When using CF to protect inbound SSL traffic is it a best practice to lockdown the rule that allows the traffic to only the CF ip ranges? This way the web server cannot be accessed directly via the IP?
Yes, that is generally advisable.
This topic was automatically closed after 14 days. New replies are no longer allowed.