Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


Skip to content
  • Categories
  • Recent
  • Tags
  • Popular
  • Bookmarks
  • Search
Skins
  • Light
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor
  • Default (No Skin)
  • No Skin
Collapse
Brand Logo

Cloudron Forum
Apps | Demo | Docs | Install
  1. Cloudron Forum
  2. Feature Requests
  3. Per-application access rules

Per-application access rules

Scheduled Pinned Locked Moved Feature Requests
networkingfirewallwaf
5 Posts 4 Posters 493 Views
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • V Offline
    V Offline
    vividly8450
    wrote on last edited by girish
    #1

    I'm looking at rolling several projects into a single Cloudron instance, and so far it looks like a good option. One thing I'm interested in doing is filtering access to specific applications by IP. For example:

    • PeerTube can be accessed by the entire internet
    • Immich can only be accessed from my home IP
    • Emby can only be accessed from my home IP and these five ProtonVPN endpoint IPs
    • NextCloud can only be accessed from my home IP, office IP range, and these five ProtonVPN endpoints

    ... and so on. I don't see any immediately obvious way to do this. I can purchase additional IPv4 addresses from my hosting providers to facilitate this if needed, but it would be ideal if this isn't necessary.

    Is there any way to accomplish this through the web UI? If not, are there any config files I can use?

    1 Reply Last reply
    5
    • girishG Offline
      girishG Offline
      girish Staff
      wrote on last edited by
      #2

      Currently, there is no per app network access control. I will move this to Feature Requests.

      V 1 Reply Last reply
      2
      • girishG girish moved this topic from Discuss on
      • humptydumptyH Offline
        humptydumptyH Offline
        humptydumpty
        wrote on last edited by
        #3

        +1 for home IP access limitation

        1 Reply Last reply
        2
        • V Offline
          V Offline
          vividly8450
          replied to girish on last edited by
          #4

          @girish Great, thanks!

          1 Reply Last reply
          0
          • necrevistonnezrN Online
            necrevistonnezrN Online
            necrevistonnezr
            wrote on last edited by
            #5

            Now, combine this with something like Wireguard or Tailscale and limit access to certain apps (Vaultwarden, Nextcloud, etc.) to users connected to such VPN - that would be the dream

            1 Reply Last reply
            3

            • Login
            • Don't have an account? Register
            • Login or register to search.
            • First post
              Last post
            0
            • Categories
            • Recent
            • Tags
            • Popular
            • Bookmarks
            • Search