Set IP policies | Network | Northflank Application docs

v1

Overview
Getting started
- Introduction to Northflank
- Link your Git account
- Create a project
- Build and deploy your code
- Set up a pipeline
- Add and verify a domain
Production workloads
- Get production-ready on Northflank
- Release for production
- Persistent storage in production
- Production operations
Deploy on Northflank
Migrate from Heroku
Pricing on Northflank
How-to guides
Build
- Build your code on Northflank
- Build code from a Git repository
- Build code from a self-hosted VCS
- Inject build arguments
- Build with a Dockerfile
- Build with buildpacks
- Pull images from Northflank
Run
- Run containers and micro-services on Northflank
- Run an image continuously
- Run an image once or on a schedule
- Run an image from a container registry
- Save registry credentials
- Change deployment source
- Inject runtime variables
- Deploy to a region
- Access running containers locally
- Override command or entrypoint
Release
- Continuous integration and delivery on Northflank
- Manage CI/CD
- Create a pipeline and release flow
- Configure a release flow
- Set up a preview environment
- Run and manage releases
- Run migrations
Infrastructure as code
- Infrastructure as code on Northflank
- Create a template
- Write a template
- Run a template
- Share a template
- GitOps on Northflank
- Use GitHub Actions with Northflank
Observe
- Observability on Northflank
- See builds
- Monitor containers
- View logs
- View metrics
- Configure health checks
- Configure notification integrations
- Set infrastructure alerts
- Configure log sinks
- Tag workloads and resources
Scale
- Scaling your services on Northflank
- Scale replicas/instances
- Increase CPU and memory resources
- Increase storage
- Autoscale deployments
Databases & persistence
- Stateful workloads on Northflank
- Deploy a database
- Connect database secrets to workloads
- Access a database
- Scale a database
- Configure addons for high availability
- Database observability and monitoring
- Backup, restore, and import data
- Upgrade a database
- Add a persistent volume
- Deploy databases and storage on Northflank
- Migrate your data to Northflank
- Integrate with a database provider
  - Integrate Mongo Atlas with Northflank
Network
- Networking on Northflank
- Expose your application
- Configure ports
- Set IP policies
- Configure basic authentication
- Enable multi-project networking
- Use Tailscale
Secure
- Security on Northflank
- Inject secrets
- Upload secret files
- Manage secret groups
- Manage API tokens
- Enable single sign-on and multi-factor authentication
Domains
- Domains on Northflank
- Add a domain to your account
- Link a domain to a port
- Remove a domain
- Use a CDN
- Wildcard domains and certificates
- Domain registrar guides
Collaborate
- Collaborate on Northflank
- Create a team
- Manage an organisation
- Manage Git integrations
- Using role-based access control
- Grant API access
Cloud providers
- Using other cloud providers with Northflank
- Add your cloud account to Northflank
- Create a Kubernetes cluster with Northflank
- Manage and use your Kubernetes cluster with Northflank
- Deploy your workloads to specific node pools
Billing
- Pricing on Northflank
- Add a card
- Monitor spending
- View invoices
- Pay an invoice
- Add your tax ID
API & CLI
Use the API
Use the CLI
Use the JavaScript client
Forwarding
Execute commands
Log tailing
Retrieve metrics

Application API & CLI

Network /

Set IP policies

IP policies allow you to either block IP addresses from accessing a port, or to only allow certain IP addresses and exclude all others. You can use this feature to, for example:

Block the IP ranges of certain countries to meet legal requirements
Block the IP addresses of malicious actors
Allow only the IP addresses of your employees or clients to help secure a website or data
Allow only the IP address for a required external service

You can set IP policies for a specific port from the security rules section of the ports & DNS page of combined and deployment services.

Configuring IP policies for a port for a deployment service in the Northflank application

You can enter specific IP addresses or use CIDR blocks to allow or deny ranges of IP addresses. For example, 192.168.0.0/24 would apply your policy to IP addresses in the range 192.168.0.0 - 192.168.0.255.

Allowing an IP address, or a range of addresses, will block all other IP addresses.

Denying an IP address will always take precedence over allowing an IP address, so it isn't possible to deny a range of IP addresses and allow specific ones within that range. You can, however, allow a range of IP addresses and deny specific IP addresses within the range.

You can apply rules to one or multiple ports, and apply different policies to different ports on the same service..

Next steps

Configure basic authentication

Require users to enter a username or password to access your site.

Link a domain to a port

How to link and unlink domains and subdomains with specific ports on your deployments.

© 2024 Northflank Ltd. All rights reserved.

northflank.com Terms Privacy feedback@northflank.com