This is a hands-on, step-by-step guide post you can use to publish a Windows host with in-browser RDP using Cloudflare Tunnel and Cloudflare Zero Trust Access. Read it once, then follow each step. I wrote this so you can copy, paste, edit small values, and run a single PowerShell script at the end to finish the setup on Windows.
Short summary
I had my domain registered with Hostinger so I moved my domain DNS management into Cloudflare. The process involves pointing your domain to Cloudflare, creating a Cloudflare Tunnel, installing the tunnel agent on Windows, configuring the tunnel to route a public hostname to an internal RDP host, creating a Zero Trust Access app with browser rendering, and testing.
Step 0 — Key information you should have
A domain name (example: yourdomain.com). Cloudflare account with Zero Trust (Access) enabled. Hostinger account where your domain currently has DNS. Windows machine where you will run cloudflared (Administrator access required). Private IP of the RDP target (example: 192.168.1.100), and RDP enabled.
Step 1 — Add your domain to Cloudflare
Log in to Cloudflare and add your domain. Log in to Hostinger, and replace the current nameservers with the ones provided by Cloudflare.



