ipFilter

IP filtering rules. Allow list has priority over deny list. By default all IP addresses are allowed. To block all incoming requests (except for those in ‘allow’) add 0.0.0.0/0 (all IPv4) and ::/0 (all IPv6) to deny section.

# recommended values
ipFilter: 
  allow: [...]                  # add trusted IP addresses or ranges here
  deny: ["0.0.0.0/0", "::/0"]   # block all other IP addresses

ipFilter.allow

string[] = []

List of IP addresses or ranges (CIDR or address range) to be granted access to the server. This list overrides ipFilter.deny list.

ipFilter:
  # ...
  allow:
    - "192.168.66.12"               # single address
    - "2001:db8::/48"               # CIDR notation
    - "192.168.66.0-192.168.66.10"  # Address range

ipFilter.deny

string[] = []

List of IP addresses or ranges (CIDR or address range) to be denied access to the server.

ipFilter:
  # ...
  deny:
    - "192.168.66.12"               # single address
    - "2001:db8::/48"               # CIDR notation
    - "192.168.66.0-192.168.66.10"  # Address range
  # ...