Skip to content
/ flaresync Public

This application synchronises Cloudflare egress IP ranges with GCP Cloud Armor policies

License

BSD-2-Clause license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

SebastianPereiro/flaresync

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
cloudflareparser
cloudflareparser
 
 
gcp
gcp
 
 
k8s
k8s
 
 
.dockerignore
.dockerignore
 
 
Dockerfile
Dockerfile
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
VERSION
VERSION
 
 
flaresync.go
flaresync.go
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 

Repository files navigation

Flaresync

This application synchronises Cloudflare egress IP ranges with GCP Cloud Armor policies. It allows you to restrict incoming connections to your GKE ingresses to traffic that has been proxied by the Cloudflare WAF. Run it daily as k8s CronJob.

How it works:

It gets the current Cloudflare IP ranges ETag and compares it with the GCP policy description. If the ETag is different, it updates the policy rules.

CLI flags:

  -debug
        Add additional debugging output
  -policy string
        Cloud Armor policy name
  -project string
        Google Cloud Project

About

This application synchronises Cloudflare egress IP ranges with GCP Cloud Armor policies

Resources

Readme

License

BSD-2-Clause license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages