通过IP限制对CloudFront的访问 [英] Restricting access to CloudFront by IP
问题描述
我想限制存储桶对某些IP的访问。我知道如何从限制对特定IP地址的访问。
I want to restrict bucket access to certain IPs. I know how to create a bucket policy from Restricting Access to Specific IP Addresses.
我的问题:这可以与CloudFront一起使用吗?怎么样?我只能允许某些IP访问CloudFront吗?
My question: Can this work with CloudFront? How? Can I allow only certain IPs to access CloudFront?
推荐答案
Web应用防火墙是您的朋友。
Web Application Firewall is your friend.
http:// docs.aws.amazon.com/waf/latest/developerguide/web-acl-ip-conditions.html
使用IP地址创建规则并其余的 WAF会注意。
Create your rule with your IP Addresses and rest "WAF" will take care.
您需要将其应用于所需的CloudFront发行版。
You need to apply this to the required CloudFront Distribution.
您可以将您的存储桶策略限制为CloudFront并通过CloudFront限制为所需的IP。
You can restrict your bucket policies to CloudFront and restrict to your required IP's through CloudFront.
这篇关于通过IP限制对CloudFront的访问的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
