Route public traffic to private applications with Cloudflare
Curated from Cloudflare Blog
For SREs and DevOps engineers, securely exposing internal applications to the public internet without compromising network architecture can be a persistent challenge. The new Application Services for Private Origins from Cloudflare presents a compelling solution by enabling traffic routing to private IPs using existing secure transport mechanisms like IPsec or GRE. This removes the need for public IP addresses or additional software agents, streamlining operations and reducing attack surfaces. The approach aligns well with zero-trust and private-by-design infrastructure goals. It also supports hybrid and multi-cloud environments where private connectivity is key. If you're managing public-facing services backed by private infrastructure, this technology offers a clean, secure, and scalable alternative. Takeaway: Evaluate how this capability can replace or simplify your current public access patterns without exposing internal endpoints.
Application Services for Private Origins is available now in closed beta. Route public hostnames to private IP origins over your existing IPsec, GRE, CNI, or Cloudflare Mesh paths. No public IPs or extra connector software required.
— Cloudflare Blog