Hacker News new | past | comments | ask | show | jobs | submit login

I'm under the impression that this is against CloudFlare's ToS, otherwise I'd probably be doing it myself.

See section 2.8 "Limitation on Serving Non-HTML Content." of their subscriber agreement:

use of the Services for serving video or a disproportionate percentage of pictures, audio files, or other non-HTML content is prohibited, unless purchased separately as part of a Paid Service or expressly allowed under our Supplemental Terms for a specific Service.

Last I checked, SSH is non-html content. I even opened a support ticket with their support, specifically asking about SSH and other traffic and this is what I received: So if no matter what service you use, Once you breach this rule it will be applied.

EDIT: Looks like the CloudFlare CTO has clarified things below that this usage does not in fact violate the ToS.




That's for Cloudflare's CDN/reverse-proxy service.

This is the correct one for Cloudflare Tunnel: https://developers.cloudflare.com/cloudflare-one/connections...


This seems to be the license for cloudflared. But when you use cloudflared to create a tunnel via cloudflare network, aren't you also bound to Cloudflare's ToS because the software itself is useless without using the service provided by Cloudflare?


I am literally Cloudflare's CTO. I'm pretty sure I know that using Cloudflare Tunnel for SSH isn't a violation of our service.


Nobody thought you were figuratively cloudflares CTO.

“I’m literally never going to stop misusing this word.”


Thanks for the clarification! Might want to educate your support staff a bit more so they can provide the same clarification.

This was my assumption as well given the tutorials and such available on your site. I was confused though and so reached out for clarification.


Hold up. I follow this space closely (I maintain the list of tunneling tools linked in OP). Everybody I've communicated with has been operating under the assumption that section 2.8 applies to Cloudflare Tunnel. See for example my post on another thread yesterday [0]. Are you saying this isn't the case? Is it even possible to use Tunnel without going through the CDN?

[0]: https://news.ycombinator.com/item?id=30259902


What I'm saying is we specifically allow people to use SSH with Cloudflare for Teams: https://developers.cloudflare.com/cloudflare-one/tutorials/s...

The original comment above implied that using SSH with Cloudflare Tunnel was somehow forbidden.


Ah ok I misread your comment as implying the CDN ToS doesn't apply to Tunnel. It doesn't if you aren't using it (ie SSH), in which case only the Tunnel ToS applies, but otherwise both apply.


Ah, good to know. Thanks!


best reply ever, totally made my day.


It's not clear to me what is allowed. Would I risk a termination if I used the service to proxy ~500 GB per month of video content?

(I'm looking for a way to get around bad traffic shaping I get in the afternoon between two locations streaming live TV.)


It was strange reading this comment on Hacker News..

You will also find comments from CloudFlare folks here which suggests this use-case is sanctified.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: