When you run services on a Kubernetes cluster in an isolated network, the question of access becomes critical. Who can reach what, and how do you expose services without punching holes in your firewall? This post covers how we use Tailscale as a zero-trust access layer alongside Cloudflare Tunnel for