Cloudflare Zero Trust Tunnel
Learn how to secure Mongonaut with Cloudflare Zero Trust Tunnel so you can access your MongoDB databases securely.
This guide explains how to secure your Mongonaut instance using Cloudflare Zero Trust, ensuring that only authorized users can access the interface.
Prerequisites
- Cloudflare Account with Zero Trust enabled.
- Domain registered with Cloudflare (e.g., example.com).
- Mongonaut Container running on your server.
Setting up Cloudflare Zero Trust Tunnel
For the basic setup of a Cloudflare Zero Trust Tunnel, please follow the official step-by-step guide:
Official Cloudflare Zero Trust Tunnel Documentation
The key steps in the process are:
- Creating a tunnel in the Cloudflare Zero Trust Dashboard
- Installing and configuring cloudflared on your server
- Setting up a public hostname for your application
- Defining access policies for user authentication
Configuring Mongonaut with Cloudflare Tunnel
After setting up the Cloudflare Tunnel following the official guide, customize the configuration for Mongonaut:
1. Configure Hostname for Mongonaut
When setting up the public hostname in the Cloudflare Zero Trust Dashboard:
- Subdomain:
mongonaut(or any name of your choice) - Domain: Your domain registered with Cloudflare
- Service:
http://localhost:8081(default Mongonaut port)
2. Configure Access Rules
Create an access rule in the Zero Trust Dashboard for your Mongonaut application:
- Navigate to Access > Applications > Add an application
- Select Self-hosted as the application type
- Configure:
- Name: Mongonaut
- Domain:
mongonaut.example.com(your configured subdomain)
- Create at least one policy defining who should have access:
- Policy name: Mongonaut Access
- Configure rules: Choose email addresses, IP ranges, or access groups
- Setup authentication: Select your preferred authentication method
3. Secure Mongonaut with Docker
Ensure your Mongonaut container is running on the correct port: