![]() Securing Access to the Cloudflare Account Http : ip_ban_enabled : true login_attempts_threshold : 5 use_x_forwarded_for : true trusted_proxies : - 172.30.33.0/24 Paste the following lines inside the configuration.yaml and save. This will enable IP banning after 5 failed logging attempts and the processing of the original web client IP address via the x-forwarded-for header in Home Assistant. Enable IP banning and the x-forwarded-fore header use in Home Assistant.Go to the add-on configuration and provide you external hostname and Cloudflare tunnel name. Select the Cloudflared addon from the list and click install. Select repositories from the upper right menu. Go to Settings, Add-ons, and Add-on Store. To install this add-on, manually add the HA-Addons repository link to Home Assistant. ![]() And the last prerequisite is to decide whether to use a local or managed tunnel (We are going to use a local one).You have to have a working Cloudflare setup with a domain name, and we already have that, so we are good to go.That means if you already have the DuckDNS add-on, Let’s Encrypt add-on, or something similar, or you have manually configured some SSL certificates in your Home Assistant, you have to remove them. Make sure to remove all other add-ons or configuration entries handling SSL certificates.Read the full add-on documentation Installation Especially section 2.8 could be breached when mainly streaming videos or other non-HTML content. Please make sure to be compliant with the Cloudflare Self-Serve Subscription Agreement when using this add-on. If you do not have one, you can get one for free at Freenom. To use this add-on, you have to own a domain name (e.g. ![]() Additionally, you can utilize Cloudflare Teams, their Zero Trust platform, to further secure your Home Assistant connection. It exposes your Home Assistant to the Internet without opening ports on your router. Using or Home Assistant cloud is recommended.Ĭloudflared connects your Home Assistant instance via a secure tunnel to a domain or subdomain at Cloudflare. This technical note helps with the configuration and several security measures, but use this configuration or the Cloudflare Tunnel at your own risk. Publishing Home Assistant directly on the internet is not without any risk.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |