Ask HN: 如何设置 Cloudflare DNS 代理和 GCP 负载均衡器,并启用 HTTPS?
1 分•作者: pinter69•6 个月前
我通过 Cloudflare DNS 代理连接到我的 GCP 负载均衡器 API 端点,使用 HTTPS 和已签名的 Google 证书。负载均衡器有一个防火墙规则,只允许 Cloudflare IP 连接。每 3 个月,为了更新 Google 证书,我需要禁用防火墙规则并关闭 DNS 代理。这是一个降低我安全性的手动流程。
有没有更好的方法来解决这个问题?
查看原文
I have Cloudflare DNS Proxy connect to my GCP load balancer API endpoint via HTTPS with a signed google certificate. The load balancer has a firewall rule allowing only Cloudflare IPs to connect. Once every 3 months in order to update the google certificate I need to disable the firewall rule and turn off the DNS proxy. A manual process that lowers my security.<p>Is there a better approach to this?