Loading...
Caption
If you are using #Cloudflare tunnels to expose services on your self-hosted servers then it can be, you know, a little difficult occasionally to set up. But if you want to completely own the tunnels then have a look at Pangolin. #Pangolin is a open source, fully self-hostable, therefore free, apart from the VPS you need. Service to allow you to create not only your own tunnels, but you can also set up your own private #tailscale #VPN. So when you've got it all set up you could use your VPS you purchase or rent somewhere as an exit node and own not only tunnels but your own VPN as well.
Performance Category
Above Average
Score
4.1/5
Shares: 5/5
Comments: 5/5
Retention: 1/5
Views: 5/5
Likes: 5/5
Followers: 5/5
Script: 3.0/5
Total Views
71047
Likes
3118
Shares
304
Comments
106
Duration
7m 39s
Traffic Sources
For You
66,358
93.4% of views
Personal Profile
2,202
3.1% of views
Search
1,279
1.8% of views
Others
1,066
1.5% of views
Follow
142
0.2% of views
Sound
0
0.0% of views
Performance vs Median
Views
+1539.5%
Likes
+2035.6%
Shares
+5980.0%
Comments
+1077.8%
For You Traffic
+2089.7%
Profile Traffic
0%
Search Traffic
+1542.5%
Audience Origin
Non-Followers
84.0%
59,679 views
Followers
16.0%
11,368 views
40.2% of followers reached
Audience Growth
New Followers
389
Performance vs Median
+7680.0%
Transcript
No transcript available.
Generate Script Scorecard
Extract Actions & Impact
Script Scorecard
No scorecard available.
Run the script scorecard evaluation to generate insights.
Action & Impact
Run the AI evaluation to identify actions and analyze their impact.
Actionable Tips
No tips available.
Run the script scorecard evaluation to generate actionable tips.
*3 comments hidden by TikTok
FlorianI bought a vps which i use to expose my services to the internet. It uses certbot for https, terminates ssl and sends the traffic through a tailscale tunnel to my hypervisor.
Tasman Skies 🥝yes please a video on setting up on racknerds
1
Creator
Jan 26, 2026I ended up going with hetzner as it has 10x the traffic per month.
Danny Chrismas 🇬🇧🇪🇺Are you using cloudflare tunnels for free or paying?
Creator
Jan 15, 2026tunnels are free yes, but have limitations. I recently moved to pangolin and that's $4.50 a month.
Motivationerdfor my proxmox users, there's also a pangolin helper script. making it easy to Install in one click
1
Creator
Jan 13, 2026nice to know
AlcoholWhat about site to site connectivity, and tunnels to access internal networks?
1
Creator
Jan 12, 2026im pretty sure it will support. site 8t site no issue. I'm going to do a video tomorrow on setting it up, so I'll make sure to add that
RetroDevI might give Pangolin a try. I’m testing out Cloudflare Tunnels and it’s pretty good but I feel it’s a bit overkill for self hosting and working solo
3
Creator
Jan 10, 2026yeah, there is a lot in CF that will never be needed, but it's just so easy. Im planning a pangolin project soon.
nextgenai_frwhy not using tailscale ?
sett.eeI love pangolin
2
Creator
Jan 3, 2026pangolin rocks.
1
sett.eewhat’s your setup for split screen recording on TikTok?
1
Creator
Jan 3, 2026I just use obs, nothing too fancy
1
Reece ApplingInterestingly enough I just swapped over from tunnels to tailscale the other day because I hit some bandwidth limits.
1
Creator
Dec 31, 2025that's why moving to pangolin on your own service is the best bet. you control bandwith yourself.
coil_whinecan you point me to the exact terms of cloudflare tunnels that I would be in violation with when using Plex? I couldn't find any
MJAPretty sure it’s not violating their tos anymore, they updated it recently
DLF.Headscale on OCI and tailscale client in firewall.
MoehNetbird ?
1
KittanDon’t rely on tunnels. Just buy a domain name and set up a redirect. If Cloudflare goes down, AWS can handle it, and vice versa. I pay $15 every four years for my domain, and as long as everything is proxied through Cloudflare and/or AWS, security isn’t an issue.
6
BestwelMy Cloudflare tunnels are crapping out on Google DNS.
1
Creator
Dec 26, 2025try pangolin, or use Cloudflare DNS instead?
user9827348062865The easiest way is to buy a vps with a static ip install a vpn connect your home servers to that vpn and route all traffic through that connection via nginx
1
b"gone down a lot recently" bruh two major outages in 6 years... my CF Rep even called to apologise and explained what happened before the official announcement - of what went wrong - went out which was nice of them. Terms & Service is a grey area though, depending on your contract and usage with them. Definitely run it via my personal version and never had an issue, and highly doubt it'll ever be picked up
2
Creator
Dec 25, 2025Yeah, "gone down a lot" was a bit of a stretch.. and yes I've been using it for year and no issue, but I just like the idea of owning or at least having more control over the tools.
kamadojoeroenUsing pangolin for many months now. And never let me down.
6
Oussema Harrabiat this point tailscale sounds much better
2
qwertyu0123But tailscale is not open source and you depend on other to have all your traffic. Why not nginx ?
Creator
Dec 22, 2025Thats why Im moving to pangolin
1
lotuwhy would you wanna use this or cloudflare tunnels considering tailscale’s free and much easier to setup/maintain
AresI like twingate
1
Jonathan MarkovskiI haven’t run into an issue with cloudflare. Just saying.
1
Creator
Dec 19, 2025Honestly, neither of I Cloudflare tunnels has always been incredibly reliable and easy to use. I just like to have a lot more control over the surfaces I use and pangolin while it will cost me to run a VPN, sorry, a VPS, I just like that extra control.
1
n0bs_Do that many people really not have dedicated public IPs?
Creator
Dec 19, 2025Yeah, a lot of people, especially if they are behind a CGNAT, which is really, really, really common these days.
1
Lonusyeah, there aren't lot of IPv4 left so most users are being out behind cgnat. A good option is IPv6
1
Creator
Dec 23, 2025hasn't taken off as much as you would have expected.
Nushan KodikaraI’ve used Tailscale till last week religiously, previously used WireGuard itself which is what Tailscale is build upon, but I found out Tailscale is hogging resources on my servers. Soo not for me, back to barebones WireGuard
7
CainI would read into cloudflare TOS, they removed the clause that banned you from using it for something like plex to my understanding
9
Creator
Dec 19, 2025From what I know, the TOS does allow you to stream using tunnels, however the content needs to be hosted within the R2 buckets. So they did change it, but they changed it with the enforcement that you have to host it with them.
6
Somebody Somewhereif they have license enforcement it's very likely that they can and are also monitoring...
4
Creator
Dec 18, 2025not sure if they monitor self hosted
Somebody SomewhereI work for cyber security tech startups. Without looking, odds are better that they do that they don't. Even if it's not active, they can almost certainly look
1
Creator
Dec 19, 2025I would like to hope that CAN doesn't mean does.
zhxl33Wish cloudflare didn’t make it such a PITA to use my aws domain. I want to keep my existing route53 and tried reverse proxy if with cloudfront, but no dice. Guess I either give them my domain or I expose some ports again
1
Creator
Dec 18, 2025or another domain?
zhxl33Yeahhh I got a separate domain for tunnels, but now I have to go update all the urls I was previously using with the first domain for the second domain
1
connorthescotSo glad I have my own static ip
1
Lucifurso use this or headscale?
1
Creator
Dec 18, 2025headscale works too
WyattTailscale is so easy it’s crazy, highly recommend
75
SeeeeeeeebAnd if you want to share stuff with family or friends?
2
Creator
Dec 18, 2025yeah, I do use it
5
TI use tailscale (self hosted via headscale) and place a raspberry pi on their network with a reverse proxy. the raspberry pi connects back to the tailnet and everyone on their network connects to the raspberry pi's ip, proxied to my services
1
Golfrtailscale is useless for longer latency if someone is trying to connect from other parts of the world
1
WyattYou can share your tailnet to others inside of tailscale they just need an account.
3
SeeeeeeeebSo you gonna buy a raspberry pi for everyone that wants something hosted from you?
1
SeeeeeeeebYea that just adds work rather then have a URL people can just go to and login
2
Creator
Dec 19, 2025yup.
TI think it depends on the person/people you're serving. for the less technical this plan works pretty well. I set up everything and they need not do anything other than make sure it doesn't turn off. for those that can follow simple instructions (how to turn the tunnel on) then the tailnet can be setup on their device itself... also, they could very well purchase a pi, that doesn't have to come from my pocket. I don't serve to very many people, so it may not work for all.
1
kamadojoeroenTailscale depends on again a cloud service. Pangolin is on your own hardware.
1
kamadojoeroenPangolin has build in firewall rules. So you can allowlist certain ip addresses.
1
kamadojoeroenOr add users to pangolin so you can serve them a login page before allow access to certain app’s.
1
JEckinyou can use their funnels. It'll give you a link to access the services
1
samhengel01I find the speeds can be a bit slow and limits users, are there any other options to access my server remotely
1
Tasman Skies 🥝US$6 per user, per month… yay
Tristan NewguyStarted pangolin and it was great until my truenas app for newt stopped working after upgrading to 1.7.0
2
Creator
Dec 18, 2025oh, oh no... I guess I need to ask, did you turn it off and bank on again?
ollSo i have exactly that problem. I host jellyfin in my homelab but i cant rly access it rn from the wan cause i restrict it via npm. I kind of dont want to let the wan access it. Am i to paranoid? Would pangolin solve that problem?
1
AlecIf you don't want to host pangolin or headscale on a VPS, tailscale's free tier is likely the best option
1
Creator
Dec 18, 2025for personal or professional its awesome, when it's family and friends not so great
ollYeah its for family and friends
lookslegiti feel like a monthly cap of 25GB data transfer would severely handicap the streaming from your server :p
1
Creator
Feb 10, 2026honestly, it doesnt, I've not even touched the sides, but I do most of the streaming from home anyway. but 25tb a month is a decent amount for 4$
1
Ted JonesI use tailscale to access my Nas from a remote location. you can also set up other people, so they too can have access.
1
Creator
Dec 18, 2025yeah, but you need to add them to your network and that can be a pain..
⠀ ⠀ ⠀ ⠀ ⠀ ⠀Not if you use Tailscale funnel
1
Ted Jonesin all honesty, I've not set up anyone else yet (I will be soon), but all they need to do (according to their guides), is set up a GitHub account, send a link to them & then accept them to the network. you can revoke access just as quick.
1
Andrew HarlessI might eventually switch to pangolin once their VPN is a little bit more robust. I like the idea of including authentication. I'm currently having to pay my ISP for a static IP and would love to find a solution to get around CGNAT to avoid the monthly fee for static IP.
6
Creator
Dec 18, 2025if you get a vps, that will give you the static IP, and then just route all your traffic through the vps?
2
Andrew HarlessThat's what I've had in mind but I'm not sure how to go about it. I planned to use just plain wireguard, but when I set up wireguard on my opnSense box it messed up all of my routing tables. I've also considered netbird and tailscale/headscale but I'm not sure if they're a great option in this use case. In short I don't know what I'm doing lol
Creator
Dec 18, 2025Hahaha, I get it! I'd put the VPN on your gateway or ont device from the ISP, then just default all your traffic is running in it, opnsense will live inside your network and not get touched.
1
Andrew HarlessI might get my nerve up and give it a go over the holiday
1
Creator
Dec 18, 2025I believe in youuuuu🥰🥰
1
ChrisIf you’re with Aussie broadband you can just ask them to turn it off saying that you self host. They usually will just do it for you.
2
Andrew HarlessMan that would be nice. I'm in the states so I doubt mine will be as accommodating lol
2
Creator
Dec 18, 2025oh nice, I'm not so lucky
freezerrKi use cloudflare ddns docker Container to update my dns name daily 👍
1
Kde PlasmaMight finally replace my janky script I made to manually do this with a wireguard tunnel + nginx reverse proxy with this
1
Creator
Dec 18, 2025It's so easy to use, so yes I'd 100% say it's worth it
sett.eeit’s actually really great
2
Creator
Dec 18, 2025yeah I'm impressed
MimsyMadUnfortunately I'm behind my isps CGNAT. Tunnels is pretty much my only option to export services afaik
2
Creator
Dec 18, 2025I'm 100% in the same boat as you, so yeah. Tunnels is all I have. But, Cloudflare Tunnels is good. This one I like because just a little bit more personal control.
1
Tim ✌️Not sure if this helps for your situation but I have been there before. I found in some 2014 forum that I can call my isp and tell them that because I have security cameras at my house and I can't access them because of CGNAT. So I tried it, I called my isp, and the issue was resolved successfully. Ot still doesn't give you a static IP but with something like ducksdns or any other dynamic DNS you can pretty much fix the issue completely.
1
Oshifti rang my isp. told them to turn cgnat off because i need remote access home and they turned it off no worries
MimsyMadA good suggestion but my isp charges extra for a static ip as a commercial product and routes it differently. it'll double my internet bill. tunnels does it for free, so I'll stick with them
2
aaoaYou might want to take a look into NoMercy.tv, a dev friend is working on it to replace plex for themselves and I kinda pushed them to release it to the public. Still work in progress but you might be interested by the concept 👀
6
Creator
Dec 18, 2025Yeah, I'll give it a look.
3
Fred MorrisonThanks for the info. Just created an account and I'm looking forward to playing around with it in the future
2
Second-by-Second Performance
Total viewers and likes aligned with spoken words.