Reputation: 47
How to prevent user access to IP address for a website hosted in GCP?
I have a Wordpress website (Bitnami) thats hosted in Google Cloud Platform. The IP address is something like: 33.33.33.33. My domain is hosted on Google Domains and has 2 nameservers pointing to Cloudflare. On the Cloudflare DNS settings, I have 2 A records, one is ftp and the other is something like 'mywebsite.com'. I also have a CNAME which is www mywebsite.com.
I am able to hit the full URL of my website but I also notice I can enter the IP address and it also works and loads the website. Is it possible to prevent acccess to 33.33.33.33 and only allow the full URL?
Upvotes: 0
Views: 876
Answers (1)
Reputation: 81356
Create VPC Firewall Rules that only allow Cloudflare IP addresses.
Consult this document for the current Cloudflare IP list.
Google Cloud VPC firewall rules overview
Note: Cloudflare does not support FTP, so you must point your DNS resource record for FTP to your server's IP address and not through Cloudflare. I recommend that you do not use FTP. Use SSH/SFTP for file transfers. Configure WordPress so that installing plugins, uploading images, etc do not require FTP. FTP is not encrypted which means your login username and password are sent in the clear.
Upvotes: 2
Related Questions
- how to disable direct access to a web site by ip address
- how to Block specific IP to access the wordpress website
- Azure website IP restriction
- Block direct external IP access for GCP's HTTP Load Balancer
- GCP Kubernetes block IP address?
- Block IP from accessing Google Compute Engine instance
- Set an IP restriction on service account
- How can I prevent Google Compute Engine external ip for public and cloudflare whitelist for GCE?
- Google cloud Wordpress limiting access by IP-address
- How to prevent access to WordPress blog by ip?