Question about the official PRO plan

I'd like to know if, on the PRO plan, the source IP for HTTP requests can be made from only one IP and not from a CloudFlare proxy, since I can't allow CloudFlare's full IP range. Does anyone know?

EbolaOP•8/20/25, 6:26 PM

Baptiste•8/21/25, 8:36 AM

Since we’re running on Vercel + Cloudflare, we can’t really guarantee a fixed origin IP. Instead of relying on raw IP allowlists (which are brittle and can break anytime), would you be open to using a more robust approach like:

mTLS (mutual TLS)
Signed requests
API keys
DNS allowlisting + mTLS

These methods are more reliable long-term and don’t depend on infrastructure-level IPs that may change.