I am running wikijs on port 8080 running reverse proxy with apache. With cloudflare argo tunnel so only specific people can login to wikijs.
So if user try to browse http://publicip:80 (port being used by apache) it will redirect to port 8080 and cloudflare main page will pop up.
However when user try to access directly http://publicip:8080 (port being used by wikijs), it still goes through. Tried ufw with port 80 not being allowed and it works. But not for port 8080