Add a "Tunnel Locally" Tool - Bring Local Server to the Internet

Daily short news for you

Privacy Guides is a non-profit project aimed at providing users with insights into privacy rights, while also recommending best practices or tools to help reclaim privacy in the world of the Internet.

There are many great articles here, and I will take the example of three concepts that are often confused or misrepresented: Privacy, Security, and Anonymity. While many people who oppose privacy argue that a person does not need privacy if they have 'nothing to hide.' 'This is a dangerous misconception, as it creates the impression that those who demand privacy must be deviant, criminal, or wrongdoers.' - Why Privacy Matters.

» Read more
There is a wonderful place to learn, or if you're stuck in the thought that there's nothing left to learn, then the comments over at Hacker News are just for you.

Y Combinator - the company behind Hacker News focuses on venture capital investments for startups in Silicon Valley, so it’s no surprise that there are many brilliant minds commenting here. But their casual discussions provide us with keywords that can open up many new insights.

Don't believe it? Just scroll a bit, click on a post that matches your interests, check out the comments, and don’t forget to grab a cup of coffee next to you ☕️

» Read more
Just got played by my buddy Turso. The server suddenly crashed, and checking the logs revealed a lot of errors:

Operation was blocked LibsqlError: PROXY_ERROR: error executing a request on the primary
Suspicious, I went to the Turso admin panel and saw the statistics showing that I had executed over 500 million write commands!? At that moment, I was like, "What the heck? Am I being DDoSed? But there's no way I could have written 500 million."

Turso offers users free monthly limits of 1 billion read requests and 25 million write requests, yet I had written over 500 million. Does that seem unreasonable to everyone? 😆. But the server was down, and should I really spend money to get it back online? Roughly calculating, 500M would cost about $500.

After that, I went to the Discord channel seeking help, and very quickly someone came in to assist me, and just a few minutes later they informed me that the error was on their side and had restored the service for me. Truly, in the midst of misfortune, there’s good fortune; what I love most about this service is the quick support like this 🙏

» Read more

Issue

Tunnel Locally is a concept that refers to the act of publishing a local server to the "common network" with the Internet. As a result, we don't need to deploy the server officially while still allowing others to view it.

As everyone knows, when starting a local server, for example node index.js to run a RESTful API, it can usually only be accessed on the current computer. At most, it allows additional machines on the same LAN to connect, provided they must connect to the same network.

During application development, there are many times when we need to use tunnel locally, such as allowing others to preview a "demo" of a website or test an API when they are very far away. Or more commonly, needing an https address pointing to the computer to check and develop features for integrating webhooks with someone else.

In reality, there are many ways to publish a local server to the Internet, and many tools and services not only help us do that but also provide addresses with https support. Just go online, type the keyword "Tunnel Locally," and there are dozens of results for you to choose from.

Previously, I often used two tools: ngrok and localhost.run. While ngrok requires installation on the machine, localhost.run is very simple to start; just type a single command, and the server is immediately mapped to the Internet.

In return, ngrok operates more stably than the other. Generally, if you want something quick and simple, use localhost.run; if you want stability, use ngrok.

Limitations

Typically, the critical point of services like this is the ability to maintain a domain name, also known as the option to choose a domain name. The domain name is randomly assigned each time you start, and it can even change continuously after a certain period or when the connection drops. In summary, changing domain names causes quite a bit of hassle as you have to spend time updating the new address.

Recognizing this, they---the service providers---offer options to use a fixed domain name, which can either be your own or assigned to a fixed subdomain. In return, you need to pay to use it or it could be free until a few thousand calls afterward it gets locked.

Recently, as my "technology stack" is gradually shifting to Cloudflare, many interesting things have been discovered. One of them is the tool cloudflared from Cloudflare. In simple terms, it also allows the use of tunnel locally, but completely for free.

cloudflared

Installing cloudflared is somewhat complex, but in return, it allows you to manage centralized services and utilize the domains managed by Cloudflare to map the local server to those addresses.

See the detailed setup guide at Set up a tunnel locally, but in summary, the steps are as follows.

Step 1: Install the CLI. The example below uses the brew command in MacOS.

$ brew install cloudflared

Step 2: Log in and authenticate using your Cloudflare account.

$ cloudflared tunnel login

Step 3: Create a tunnel ready for publishing:

$ cloudflared tunnel create <NAME>

This command creates a JSON file containing the configuration; use the cloudflared tunnel list command to view the list of all created tunnels.

Step 4: Create the cloudflared configuration file

In the .cloudflared directory (see the path at Default cloudflared directory), create a config.yml file containing the following content.

url: http://localhost:8000
tunnel: <Tunnel-UUID>
credentials-file: path/to/.cloudflared/<Tunnel-UUID>.json

Where url is the local address to be published, tunnel is the UUID created from step 3, and credentials-file is the path to the JSON file of the UUID.

Step 5: Create a subdomain to connect to the local address

$ cloudflared tunnel route dns <UUID or NAME> <subdomain>

Step 6: Run

$ cloudflared tunnel run <UUID or NAME>

You will see a screen similar to

Try accessing the subdomain, and you will receive results from the local server. Readers can also configure directly in the config.yml file to expand additional features.

Open the config.yml file and edit it:

tunnel: 6ff42ae2-765d-4adf-8112-31c55c1551ef
credentials-file: path/to/.cloudflared/6ff42ae2-765d-4adf-8112-31c55c1551ef.json

ingress:
  - hostname: local80.mydomain.com
    service: http://localhost:80
  - hostname: local8080.mydomain.com
    service: http://localhost:8080
  - service: http_status:404

When accessing local80 or local8080, you will be directed to the corresponding services. Note that you must create the subdomain record before using it (see step 5).

Additionally, there are still many things that can be done with Cloudflare's Tunnel Locally; readers can refer to Cloudflare Tunnel.

Premium

The secret stack of Blog

As a developer, are you curious about the technology secrets or the technical debts of this blog? All secrets will be revealed in the article below. What are you waiting for, click now!

View all