With Cloudflare Tunnel, you can connect private networks and the services running in those networks to Cloudflare’s edge. There are two main differences between private network and public hostname routes:
- Private network routes can expose both HTTP and non-HTTP resources.
- To connect to private network resources, end users must have the WARP client installed on their device.
Cloudflare Tunnel relies on a piece of software,
cloudflared, to connect your private network to Cloudflare. Administrators define the IPs available in that environment and associate them with the tunnel. Users in your organization can then reach the service by installing the WARP client and enrolling into your organization’s Cloudflare Zero Trust account. When users connect to an IP made available through Cloudflare Tunnel, WARP sends their connection through Cloudflare’s network to the corresponding tunnel.