|
|
|
|
|
|
by itake
64 days ago
|
|
|
I think this is the same as using a cloudflared tunnel? to access my home desktop machine, I run: ```
$ ssh itake@ssh.domain.me -o ProxyCommand="cloudflared access ssh --hostname %h"
``` and I setup all the cloudflare access tunnels to connect to the service. |
|
|
Tela takes a little different approach. The agent exposes services directly through the WireGuard tunnel without SSH as an intermediary, so you don't need sshd running on the target. Each machine gets its own loopback address on the client, so there is no port remapping.
The big difference is the relay, though. With cloudflared, Cloudflare terminates TLS at their edge. With Tela, you run the hub yourself and encryption is end-to-end. The hub only ever sees encrypted data (apart from a small header).