How can i block my service from outside access?
Hello, i am currently hosting crowdsec on docker and using traefik as a reverse proxy with a bouncer. Setup is successful so far, however:
I have a service that i want available over traefik (which it is) but i would not want it to be accessible from the outside.
So how do i block access to that service from outside?
4 Replies
Important Information
Thank you for getting in touch with your support request. To expedite a swift resolution, could you kindly provide the following information? Rest assured, we will respond promptly, and we greatly appreciate your patience. While you wait, please check the links below to see if this issue has been previously addressed. If you have managed to resolve it, please use run the command
/resolve or press the green resolve button below.Log Files
If you possess any log files that you believe could be beneficial, please include them at this time. By default, CrowdSec logs to /var/log/, where you will discover a corresponding log file for each component.
Guide Followed (CrowdSec Official)
If you have diligently followed one of our guides and hit a roadblock, please share the guide with us. This will help us assess if any adjustments are necessary to assist you further.
Screenshots
Please forward any screenshots depicting errors you encounter. Your visuals will provide us with a clear view of the issues you are facing.
© Created By WhyAydan for CrowdSec ❤️
This is not really possible with CrowdSec it more your own access controls as with CrowdSec we provide a blocklist that applies as a middleware to all of your routes.
You would better to find a plugin that does a deny all, allow list only approach.
https://doc.traefik.io/traefik/reference/routing-configuration/http/middlewares/ipallowlist/
@Combreaker
Traefik HTTP Middlewares IPAllowList - Traefik
Learn how to use IPAllowList in HTTP middleware for limiting clients to specific IPs in Traefik Proxy. Read the technical documentation.
Thank you very much! I completely overlooked this feature when i initially set up my traefik 😅