Vesta Control Panel - Forum

I have been using vestacp for a couple of years.

I have a Laravel application that consumes an api from my website.

I don't want to do it via domain as I use cloudflare and this causes response delays.

On the other hand, I see little certainty that my website can be seen from the external IP of my server.

So, what I want to do is consult the external IP from my server, but that they cannot access from the internet

In this way, limit users who access from the Internet can only access through the domain that I have with cloudflare.

any ideas?

I think it's only possible if you control access via IP using a Firewall.

Depending on your need, a Layer 7 Firewall may be required.

do you think it is possible to use the vestacp firewall?

If you want to limit (by source IP) who can access your application that is on Vesta, then yes.

The Vesta firewall is used to control access to services running on the Vesta server.

You will be able to enable access to a TCP or UDP port (or range of ports) and also define the source address of the connection to the service.

More than that, only if it is by command line in the console using iptables.

I'll leave it here in case someone has the same question.

your idea worked

however, in the case of cloudflare, I had to create a rule for each range of ips addresses here: https://www.cloudflare.com/es-es/ips/

all for port 80 and 443

I did this like this, since I tried to add them all in the same rule and I got the following error:

In case of using cloudflare you need to grant access to all IPs used by them.

You might need to create a rule for each IP range.

sandro wrote: ↑

Wed May 11, 2022 1:01 pm

In case of using cloudflare you need to grant access to all IPs used by them.

You might need to create a rule for each IP range.

Thank you so much sandro! travelagu.io