2개 답변
- 최신
- 최다 투표
- 가장 많은 댓글
0
If you are using AWS CloudFront Distribution service, you can configure Allow-list in Geographic restriction section to allow for SA and Mexico. And whatever origin is fronted by CloudFront, you will configure it to only allow connections via CloudFront and no direct-access to Origin ( for example ALB).
답변함 2년 전
0
There are 3 ways to block traffic by Geo, these can be used for public facing endpoints such as Elastic Load Balancers:
- Using CloudFront Distributions: https://repost.aws/knowledge-center/cloudfront-geo-restriction
- Using AWS WAF: https://repost.aws/knowledge-center/waf-allow-block-country-geolocation
- Using Route53: Not blocking but redirect users outside of the approved Geos to a different endpoint with either an error or no reply.
If these solutions are not applicable can you provide extra details about your use case, like the services you want to restrict, which will help people answer.
관련 콘텐츠
- AWS 공식업데이트됨 2년 전
We are not using AWS CloudFront Distribution service, any other option ?