kjelly

設定 caddy server ,只許可 cloudflare ip 訪問

January 31, 202353 words

當我們使用 cloudflare 作為防火牆/CDN或是其他事情需要 cloudflare 擋在前面,此時就需要設定 caddy 只能讓 cloudflare存取。caddy 的設定會是如下(cloudflare ip 記得隨時更新)


(ban-not-cloudflare) {
  @notcloudflare_ips {
    not remote_ip 173.245.48.0/20 103.21.244.0/22 103.22.200.0/22 103.31.4.0/22 141.101.64.0/18 108.162.192.0/18 190.93.240.0/20 188.114.96.0/20 197.234.240.0/22 198.41.128.0/17 162.158.0.0/15 104.16.0.0/13 104.24.0.0/14 172.64.0.0/13 131.0.72.0/22 2400:cb00::/32 2606:4700::/32 2803:f800::/32 2405:b500::/32 2405:8100::/32 2a06:98c0::/29 2c0f:f248::/32
  }
  respond @notcloudflare_ips 403
}

blog.kjelly.tw {

  import ban-not-cloudflare
    reverse_proxy 127.0.0.1:8081

}
React to this post
👍❤️🫶👏👌🤯🤔😂😍😭😢😡😮

You'll only receive email when they publish something new.

More from kjelly
All posts