cloudflare-zero-trust

Cloudflare Zero Trust

Safety Notice

This listing is imported from skills.sh public index metadata. Review upstream SKILL.md and repository scripts before running.

Copy this and send it to your AI assistant to learn

Install skill "cloudflare-zero-trust" with this command: npx skills add bagelhole/devops-security-agent-skills/bagelhole-devops-security-agent-skills-cloudflare-zero-trust

Cloudflare Zero Trust

Secure access to internal services without exposing public VPN endpoints.

Core Workflow

  • Register application in Cloudflare Access.

  • Integrate identity provider (Google Workspace, Okta, Entra ID).

  • Define access policies by group, email domain, and device posture.

  • Add logging and alerts for blocked requests.

Tunnel Setup

cloudflared tunnel login cloudflared tunnel create internal-app cloudflared tunnel route dns internal-app app.example.com cloudflared tunnel run internal-app

Best Practices

  • Enforce MFA and managed-device posture checks.

  • Use service tokens for CI/CD automation.

  • Review app policies quarterly.

Related Skills

  • zero-trust - Zero trust architecture fundamentals

  • dns-management - DNS routing concepts

Source Transparency

This detail page is rendered from real SKILL.md content. Trust labels are metadata-based hints, not a safety guarantee.

Open in GitHubOpen in ClawHub

Related Skills

Related by shared tags or category signals.

Security

sops-encryption

No summary provided by upstream source.

Repository SourceNeeds Review
-31
bagelhole
Security

linux-administration

No summary provided by upstream source.

Repository SourceNeeds Review
-29
bagelhole
Security

linux-hardening

No summary provided by upstream source.

Repository SourceNeeds Review
-26
bagelhole