looking to have traffic originating from any country other than the SA and Mexico blocked

0

What is the best way to filter traffic by country, just want to have traffic from 2 countries traversing our AWS and block all other countries

질문됨 2년 전636회 조회
2개 답변
0

If you are using AWS CloudFront Distribution service, you can configure Allow-list in Geographic restriction section to allow for SA and Mexico. And whatever origin is fronted by CloudFront, you will configure it to only allow connections via CloudFront and no direct-access to Origin ( for example ALB).

답변함 2년 전
  • We are not using AWS CloudFront Distribution service, any other option ?

0

There are 3 ways to block traffic by Geo, these can be used for public facing endpoints such as Elastic Load Balancers:

  1. Using CloudFront Distributions: https://repost.aws/knowledge-center/cloudfront-geo-restriction
  2. Using AWS WAF: https://repost.aws/knowledge-center/waf-allow-block-country-geolocation
  3. Using Route53: Not blocking but redirect users outside of the approved Geos to a different endpoint with either an error or no reply.

If these solutions are not applicable can you provide extra details about your use case, like the services you want to restrict, which will help people answer.

AWS
Rob
답변함 2년 전
profile pictureAWS
전문가
검토됨 2년 전

로그인하지 않았습니다. 로그인해야 답변을 게시할 수 있습니다.

좋은 답변은 질문에 명확하게 답하고 건설적인 피드백을 제공하며 질문자의 전문적인 성장을 장려합니다.

질문 답변하기에 대한 가이드라인

관련 콘텐츠