diff options
Diffstat (limited to 'clarkzjw.cc/infra/tunnel.tf')
| -rw-r--r-- | clarkzjw.cc/infra/tunnel.tf | 12 |
1 files changed, 12 insertions, 0 deletions
diff --git a/clarkzjw.cc/infra/tunnel.tf b/clarkzjw.cc/infra/tunnel.tf index 4ec9a7f..ba929c2 100644 --- a/clarkzjw.cc/infra/tunnel.tf +++ b/clarkzjw.cc/infra/tunnel.tf | |||
| @@ -10,12 +10,24 @@ resource "cloudflare_tunnel_config" "atlas_tunnel_route" { | |||
| 10 | tunnel_id = cloudflare_argo_tunnel.atlas_main_tunnel.id | 10 | tunnel_id = cloudflare_argo_tunnel.atlas_main_tunnel.id |
| 11 | 11 | ||
| 12 | config { | 12 | config { |
| 13 | // TODO: https://github.com/cloudflare/terraform-provider-cloudflare/issues/2072 | ||
| 14 | // It seems the `origin_request` here doesn't enable `no_tls_verify` in each ingress_rule | ||
| 15 | // For now, you have to enable `no_tls_verify` in the dashboard | ||
| 16 | origin_request { | ||
| 17 | no_tls_verify = true | ||
| 18 | } | ||
| 13 | ingress_rule { | 19 | ingress_rule { |
| 14 | hostname = "bt.${var.homelab_main_domain}" | 20 | hostname = "bt.${var.homelab_main_domain}" |
| 15 | path = "/" | 21 | path = "/" |
| 16 | service = "http://127.0.0.1:8080" | 22 | service = "http://127.0.0.1:8080" |
| 17 | } | 23 | } |
| 18 | ingress_rule { | 24 | ingress_rule { |
| 25 | hostname = "edgerouterx.${var.homelab_main_domain}" | ||
| 26 | path = "/" | ||
| 27 | service = "https://${var.edgerouterx_ip}" | ||
| 28 | |||
| 29 | } | ||
| 30 | ingress_rule { | ||
| 19 | service = "http_status:404" | 31 | service = "http_status:404" |
| 20 | } | 32 | } |
| 21 | } | 33 | } |