ipFilter
IP filtering rules.
Allow list has priority over deny list.
By default all IP addresses are allowed.
To block all incoming requests (except for those in ‘allow’) add 0.0.0.0/0 (all IPv4) and ::/0 (all IPv6) to deny section.
Enclose strings containing colons (
:), such as IPv6 addresses, in single quotes to avoid YAML parsing errors, for example: '2001:db8::1'.
# recommended values
ipFilter:
allow: [...] # add trusted IP addresses or ranges here
deny: ["0.0.0.0/0", "::/0"] # block all other IP addresses
ipFilter.allow
string[] = []
List of IP addresses or ranges (CIDR or address range) to be granted access to the server. This list overrides ipFilter.deny list.
ipFilter:
# ...
allow:
- "192.168.66.12" # single address
- "2001:db8::/48" # CIDR notation
- "192.168.66.0-192.168.66.10" # Address range
ipFilter.deny
string[] = []
List of IP addresses or ranges (CIDR or address range) to be denied access to the server.
ipFilter:
# ...
deny:
- "192.168.66.12" # single address
- "2001:db8::/48" # CIDR notation
- "192.168.66.0-192.168.66.10" # Address range
# ...