Question

Configure Apache (on LAMP) to accept connections from CloudFlare only

Posted April 23, 2015 3.3k views
Ubuntu Apache Security LAMP Stack Networking DNS Firewall Configuration Management

Hello

I was wondering if this would at all take care of attackers (viruses, injections & ddos etc) if I can configure to listen to requests through CloudFlare only?

If yes, then how can I configure apache to follow?


Regards
Saurabh

Add a comment
saurabh
By:
saurabh
Add a comment

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

2 answers
I3litz April 23, 2015

Yes you can, but is not apache who handles traffic filtering, you need a firewall or something like iptables.

here is the list of Cloudflares IP addresses: https://www.cloudflare.com/ips

There are plenty iptables tutorials online,

Reply Report
saurabh April 27, 2015

Hi

Thanks for your response!

I have added following rule in UFW:

ufw allow proto tcp from <cloudflare_ips> to any 80

Do you think this step could help curtail attacks on the server as the requests gets filtered through CF and other direct traffic gets blocked.

PS: I have only open ports 80 & 443. All other ports are blocked.

Reply Report
Submit an Answer

Related

Looking for something else?

Ask a new question Search for more help