設定 caddy server ,只許可 cloudflare ip 訪問
January 31, 2023•53 words
當我們使用 cloudflare 作為防火牆/CDN或是其他事情需要 cloudflare 擋在前面,此時就需要設定 caddy 只能讓 cloudflare存取。caddy 的設定會是如下(cloudflare ip 記得隨時更新)
(ban-not-cloudflare) {
@notcloudflare_ips {
not remote_ip 173.245.48.0/20 103.21.244.0/22 103.22.200.0/22 103.31.4.0/22 141.101.64.0/18 108.162.192.0/18 190.93.240.0/20 188.114.96.0/20 197.234.240.0/22 198.41.128.0/17 162.158.0.0/15 104.16.0.0/13 104.24.0.0/14 172.64.0.0/13 131.0.72.0/22 2400:cb00::/32 2606:4700::/32 2803:f800::/32 2405:b500::/32 2405:8100::/32 2a06:98c0::/29 2c0f:f248::/32
}
respond @notcloudflare_ips 403
}
blog.kjelly.tw {
import ban-not-cloudflare
reverse_proxy 127.0.0.1:8081
}