Can I use whitelist or blacklists to block/allow IP addresses?
For every service that you create, the option exists to add an ALLOW and DENY list to the service.
If the ALLOW list is populated, all other IP addresses are denied by default, and the DENY list is ignored.
If the ALLOW list is empty, then the DENY list is used to drop any connections.
You can also:
- Add comments by using a # after the IP address, hash out certain lines you don't want to be in the configuration.
- Use CIDR notation for example 192.168.1.0/24 to add or deny an entire IP network
Note, any invalid IP addresses or networks will appear in the list, but won't be processed by the backend servers when attempting to login, so be sure to use validate your IP and network addresses.