I do agree, they should use the same address space for ingress and egress. Though tunnels I would hope would be immune, but perhaps not.

Do you have the examples of this so I can take a look? Was it ports forwarded that were opened to all cloudflare ranges, or tunnels and a backend exploit?

That’s both a really honest answer and a good reason to use it depending on the person. Nice work.

Try to not run containers as root?