Full Tunnel with Zero Trust
We're exploring zero trust as a VPN replacement - and would like to explore having it operate as a full tunnel until we have time to migrate to using it more as intended.
Is this possible? We added a 0.0.0.0/0 rule, but it seems to be hit or miss, especially for public endpoints where we expect our IP in some legacy applications.
Ideally, we could have a profile that tunnels everything (full tunnel) for users of legacy apps so we can pare back such a wide scoped system over time for everyone else, where we'd still want a full tunnel, but using Cloudflare's relays as opposed to our own.
Thanks!
Is this possible? We added a 0.0.0.0/0 rule, but it seems to be hit or miss, especially for public endpoints where we expect our IP in some legacy applications.
Ideally, we could have a profile that tunnels everything (full tunnel) for users of legacy apps so we can pare back such a wide scoped system over time for everyone else, where we'd still want a full tunnel, but using Cloudflare's relays as opposed to our own.
Thanks!
