How to whitelist certain IPs to the application?

Pierre_Mavro · September 9, 2022, 10:21am

Not it’s not supported and generally not a good practice because of all the reverse DNS lookups Nginx will have to make on each incoming request, leading to more latency before answering the very first request, Nginx internal caching to manage, more load on Nginx in case of several incoming requests and a very simple way to be DDOS.

Nginx has a module for it, but as you can see not well supported GitHub - flant/nginx-http-rdns: Nginx HTTP rDNS module.

Another solution, in this case, is to add authentication instead of whitelisting IPs. I don’t know if your app can do so, would it be an acceptable solution in your case?

Pierre

sama213 · September 9, 2022, 2:19pm

Hey @JrmyDev , Qovery clusters do support the option to define static IPs for your application PODS.

checkout @Pierre_Mavro response here:

Topic		Replies	Views
Restrict access to Pod to CloudFlare Questions and Answers qovery	3	166	December 19, 2023
How to find my applications external IPs Questions and Answers qovery , aws	5	548	August 24, 2022
Build IP addresses Questions and Answers qovery , aws	2	89	January 10, 2024
Best way to handle HTTP redirects within the cluster? Questions and Answers qovery	4	192	January 24, 2024
Inter-cluster networking Questions and Answers	10	116	January 31, 2024

How to whitelist certain IPs to the application?

Related Topics