This is a simple docker container that allows you to run a Cloudflare managed network location with ease. Deploy it on any network where you intend to take advantage of Cloudflare WARP client settings based on network location.
Route 1337 LLC is moving to ghcr.io and away from Docker Hub.
This does mean that anything in the route1337 namespace on Docker Hub should no longer be trusted, as it could be run by an attacker paying for the namespace.
You can either mount your own volume containing the SSL cert and key, or let the container generate its own.
Mounting your own is the recommended course of action as you should always use your own certs.
We offer a helm chart called cloudflare-mnet in our public helm charts repo.
This Python3 code is fairly simple, and can be run directly on a host. It does rely on the hard coded folder of /cert/
for the SSL server.crt and server.key files, but otherwise you can ignore Docker.
According to Cloudflare the following constraints are in place:
- "The WARP client requires certificates to include
CNandsubjectAltNamemetadata. You can useexample.comor any other domain."- For security reasons, we recommend domains that you actually control despite this server serving a dummy page.
For configuration ease, the web page presented by this server will display the following information:
- The name of the network you should put in the ZTA console (If specified with the
NETWORK_NAMEenv var) - The SHA-256 fingerprint of the TLS certificate for use in the ZTA console
Route 1337 LLC's open source code heavily relies on donations. If you find this container useful, please consider using the GitHub Sponsors button to show your continued support.
Thank you for your support!