Restrict WARP connections from specific public IP addresses?

clocke · January 3, 2025, 12:22am

What is the name of the domain?

na

What is the issue you’re encountering

Is it possible to restrict connections to the Zero Trust/WARP VPN from specified public IP Addresses?

What steps have you taken to resolve the issue?

Hi all,
I am demoing Cloudflare Zero Trust for a client as a possible VPN solution for WFH employees. They would like to set WARP to only allow VPN connections from their WFH users’ home IP addresses. They essentially do not want end users to be able to roam with WARP; They want it to only be accessible from fixed locations.
Is it possible to do this? I’ve looked through documentation, but I don’t see a way to restrict access from specific IPs for specific employees.
Thanks in advance.

syda · January 8, 2025, 4:40am

Hi,

You can do this by configuring Access Policies in the Zero Trust dashboard. There are Selectors you can add to your rule such as IP ranges, Country, and etc. :

You can also use Device Posture checks to ensure that only devices meeting specific security criteria can access your network, such as the IdP used to authenticate:

system · January 10, 2025, 4:41am

This topic was automatically closed 2 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Cloudflare Zero Trust advice - using on LAN WARP	2	942	June 24, 2023
Using warp vpn with cloudflare waf rules WARP	2	83	October 25, 2024
Cloudflare Zero Trust - Fixed IP for the outside world Gateway	1	4698	February 6, 2022
Warp client access (when using iOS and third party apps) Zero Trust	0	728	September 3, 2023
Warp + AWS VPC 1.1.1.1 WARP	8	6323	October 5, 2021

Restrict WARP connections from specific public IP addresses?

What is the name of the domain?

What is the issue you’re encountering

What steps have you taken to resolve the issue?

Related topics