What is the best practice for securing your own server?

I want inquiry about securing my own web server by using https protocols, is it be secure by adding my IP public web server to Cloudflare or there is addition steps to make it totally secure?
and also is it necessary to make you IP public unreachable?

From my experience the best security is achieved with the following:

  • Validate the host header of all requests to your origin
  • Block connections that don’t come from Cloudflare IP ranges
  • Configure Authenticated Origin Pull with a custom certificate
  • Enable Cloudflare Access and validate the JWT at your origin (for internal applications)

Please note this is not an exhaustive list and you may need to take additional steps depending on your specific setup.


This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.