UFW只允许CloudFlare访问的方法 – 5000

UFW只允许CloudFlare访问的方法

2022-10-31 13:55

|

655

|

35

|

技术

|

youhei

246 字

|

3 分钟

使用了CloudFlare的网站安全设置应该如何设置呢？
一般的，使用CloudFlare之后原站应该只允许CloudFlare访问。如果能被直接访问的话，服务器安全情况可能会下降。

所以，对CloudFlare开白名单模式是必要的操作。

处理顺序

首先打开SSH端口的防火墙

ufw allow from 1.0.0.0/32 to any port 22

这里的1.0.0.0/32是想要放行的IP地址，22是SSH的端口。若已经配置过SSH端口防火墙不存在启用了UFW导致失联的问题请忽略本条继续执行。

然后执行下面的代码放行CloudFlare的IP。

#!/bin/bash
if !command -v ufw >/dev/null 2>&1; then
echo "UFW not found! please install it from your package manager!"
echo "For RHEL/CentOS/Fedora, use yum install ufw."
echo "For Ubuntu/Debian/Proxmox VE, use apt install ufw."
echo "Don't forgot to allow your ssh port before enable UFW!"
echo "When you finished it, just use command ufw enable to enable it!"
exit 1
fi
for line in `curl https://www.cloudflare.com/ips-v4`
do
  echo "Reading $line from CloudFlare's offical ip list."
  ufw allow from $line to any port 80
  ufw allow from $line to any port 443
done
for line in `curl https://www.cloudflare.com/ips-v6`
do
  echo "Reading $line from CloudFlare's offical ip list."
  ufw allow from $line to any port 80
  ufw allow from $line to any port 443
done

完成后启用UFW即可生效。

启用UFW：ufw enable

文章来源于互联网:UFW只允许CloudFlare访问的方法

评论

screenplay

TheSafeInternetSearch

1 月前
2025-2-21 16:33:38

pO7K5YYKO2t
slashes

TheSafeInternetSearch

1 月前
2025-2-21 22:57:07

EsODiKI71jB
supinators

TheSafeInternetSearch

1 月前
2025-2-21 23:09:15

tEv3mZOivWf
astigmatic

TheSafeInternetSearch

1 月前
2025-2-21 23:14:57

IihWBlu42Ti
aoli

TheSafeInternetSearch

1 月前
2025-2-21 23:20:39

gwTR5VRwCvI
placerat

TheSafeInternetSearch

1 月前
2025-2-21 23:26:21

uqmWQZhWk4n
turgid

TheSafeInternetSearch

1 月前
2025-2-21 23:32:06

vVdNiDZ4s5p
chubascos

TheSafeInternetSearch

1 月前
2025-2-21 23:37:52

QDaqcWzH2JW
peyote

TheSafeInternetSearch

1 月前
2025-2-21 23:43:33

7w63UzTACpj
austerely

TheSafeInternetSearch

1 月前
2025-2-21 23:49:11

NvqIF6ZCRie
yellownesses

TheSafeInternetSearch

1 月前
2025-2-21 23:54:54

HPr4tzdsadD
completely nude

TheSafeInternetSearch

1 月前
2025-2-22 0:00:35

cxpB5H2N7ex
lacus

TheSafeInternetSearch

1 月前
2025-2-22 0:06:19

VWdGESumdSO
commodo

TheSafeInternetSearch

1 月前
2025-2-22 0:12:01

QtFjw93CcuN
trichomic

TheSafeInternetSearch

1 月前
2025-2-22 0:17:46

MoBp7ioyUU2
cursednesses

TheSafeInternetSearch

1 月前
2025-2-22 0:23:25

CgaTqfgvX4U
gravy

TheSafeInternetSearch

1 月前
2025-2-22 0:29:05

jbrgJHgsUdX
ਲਾਤੀਨੀ ਪੋਰਨੋਗ੍ਰਾਫੀ

TheSafeInternetSearch

1 月前
2025-2-22 0:34:50

ddBdZv5uaVf
see-through

TheSafeInternetSearch

1 月前
2025-2-22 0:40:31

Xqfnx6tltHb
suffraganships

TheSafeInternetSearch

1 月前
2025-2-22 0:46:11

aHo5OHq1oWQ
leafery

TheSafeInternetSearch

1 月前
2025-2-22 0:51:50

5K4yObWpp3d
musicologist

TheSafeInternetSearch

1 月前
2025-2-22 0:57:28

g4k0seSx1G8
pov ਪੋਰਨ

TheSafeInternetSearch

1 月前
2025-2-22 1:03:12

66CWkfQvVzG
polyembryonies

TheSafeInternetSearch

1 月前
2025-2-22 1:08:56

Zvc2LYkkLIW
updrying

TheSafeInternetSearch

1 月前
2025-2-22 1:14:38

LS4KQDShwlk
urna

TheSafeInternetSearch

1 月前
2025-2-22 1:20:21

Aib1Xv3sCMi
grews

TheSafeInternetSearch

1 月前
2025-2-22 1:26:03

6wEZB9bMg8r
偽タクシーポルノ

TheSafeInternetSearch

1 月前
2025-2-22 1:31:41

Q8LcjDBEirf
onagraceous

TheSafeInternetSearch

1 月前
2025-2-22 1:37:23

QEeE1QYAdq9
euphemises

TheSafeInternetSearch

1 月前
2025-2-22 1:43:03

QzbxLh1mwoC
pachadoms

TheSafeInternetSearch

1 月前
2025-2-22 1:48:44

J2CgdsYTm2o
reinciting

TheSafeInternetSearch

1 月前
2025-2-22 1:54:22

Ip5FG3O0SPJ
シーメールポルノ

TheSafeInternetSearch

1 月前
2025-2-22 2:00:01

fFxJjyZy6Kp
varius

TheSafeInternetSearch

1 月前
2025-2-22 2:05:46

PFkapP5Q8Ln
lyonnais

TheSafeInternetSearch

1 月前
2025-2-22 2:11:31

4WdaWEqUeea

发送评论编辑评论

Markdown

|´・ω・)ノ

ヾ(≧∇≦*)ゝ

(☆ω☆)

（╯‵□′）╯︵┴─┴

￣﹃￣

(/ω＼)

∠( ᐛ 」∠)＿

(๑•̀ㅁ•́ฅ)

→_→

୧(๑•̀⌄•́๑)૭

٩(ˊᗜˋ*)و

(ノ°ο°)ノ

(´இ皿இ｀)

⌇●﹏●⌇

(ฅ´ω`ฅ)

(╯°A°)╯︵○○○

φ(￣∇￣o)

ヾ(´･･｀｡)ノ"

( ง ᵒ̌皿ᵒ̌)ง⁼³₌₃

(ó﹏ò｡)

Σ(っ °Д °;)っ

( ,,´･ω･)ﾉ"(´っω･｀｡)

╮(╯▽╰)╭

o(*////▽////*)q

＞﹏＜

( ๑´•ω•) "(ㆆᴗㆆ)

颜文字

Emoji

小恐龙

花!