ipFilter

IP filtering rules. The allow list has priority over the deny list. By default, all IP addresses are allowed. To block all incoming requests (except for those in ‘allow’), add 0.0.0.0/0 (all IPv4) and ::/0 (all IPv6) to the deny section.

Enclose strings containing colons (:), such as IPv6 addresses, in single quotes to avoid YAML parsing errors, for example: '2001:db8::1'.

# recommended values
ipFilter: 
  allow: [...]                  # add trusted IP addresses or ranges here
  deny: ["0.0.0.0/0", "::/0"]   # block all other IP addresses

ipFilter.allow

string[] = []

List of IP addresses or ranges (CIDR or address range) to be granted access to the server. This list overrides ipFilter.deny list.

ipFilter:
  # ...
  allow:
    - "192.168.66.12"               # single address
    - "2001:db8::/48"               # CIDR notation
    - "192.168.66.0-192.168.66.10"  # Address range

ipFilter.deny

string[] = []

List of IP addresses or ranges (CIDR or address range) to be denied access to the server.

ipFilter:
  # ...
  deny:
    - "192.168.66.12"               # single address
    - "2001:db8::/48"               # CIDR notation
    - "192.168.66.0-192.168.66.10"  # Address range
  # ...

Feedback

Was this page helpful?

Glad to hear it! Please tell us how we can improve.

Sorry to hear that. Please tell us how we can improve.