Can 3rd parties channel requests through their account to my AWS server?

patos · December 20, 2024, 11:45am

What is the issue you’re encountering

Hello, I made cloudflare ips the only acceptable ips to contact my AWS server… but I wonder if someone can create a cloudflare account, and channel their malicious payloads to my server effectively bypassing my firewall… can AWS be configured to stop this? I need to authenticate that my AWS server is being reached by MY cloudflare account.

sjr · December 20, 2024, 1:20pm

You can use Authenticated Origin Pull (use your own certificate, not the Cloudflare one)…

Or use a tunnel so you don’t need to allow any IPs…

system · December 22, 2024, 1:20pm

This topic was automatically closed 2 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Authenticate requests as coming from my cloudflare account DNS & Network	2	798	July 14, 2023
Authenticated Origin Pulls per Client Security dns , dash-ssl-tls , dash-getting-started	7	4006	August 9, 2018
Locking down the origin server Security CloudflareTunnel	11	3044	January 14, 2023
Why not use Authenticated Origin Pulls to secure origins for Cloudflare Access? Access dash-ssl-tls	5	5091	May 29, 2019
Deny All IPs Except Cloudflare to my Origin Server Security	2	2447	March 24, 2022

Can 3rd parties channel requests through their account to my AWS server?

What is the issue you’re encountering

Related topics