Hi everyone,
I just wanted to share my AWS lambda function.
I’ve been wanted to protect the traffic between Cloudflare and the origin (AWS ELB or EC2).
Now if you create a managed prefix list of AWS VPC, you only allow the traffic from Cloudflare servers to enter your AWS VPC (security group to be specific).
Let me know what you think about it.
All instruction is in the readme of my GitHub rep
https://github.com/katzueno/lambda-update-cloudflare-ip-ranges
(Of course, you should consider using tunnel for more secure path.)
Thanks