Home > Software design >  Jelastic - Restrict direct access to a container behind a load balancer
Jelastic - Restrict direct access to a container behind a load balancer

Time:04-08

I'm using Jelastic with two environments, one for my frontend and one for my backend.

Each environment has a Nginx load balancer with an IPv4, then an application server. For the backend (api), the application server is Spring-boot and for the frontend, it is Node.js

However, I have added IPv4 on each of my application servers to have direct access with my deployment scripts.

The concern now is that if I go directly through these IPs and no longer through the respective load balancers, I can still access my application but the connection is not secure.

I tried to close the incoming ports 80/443 on the application servers, but it doesn't change anything, I still access with the IP.

Here is an image that quickly summarizes the problem (the ip used are not real): enter image description here

Thank you for your help

CodePudding user response:

You can restrict access to your spring-boot by configuring the firewall to allow only access from your load balancer. You can follow that Jelastic dashboard firewall rules screen, showing a Spring Boot node with priority 900 ALLOW for all traffic from Load Balancer source, and priority 1030 Allow App Port (HTTP) port 8080 traffic All sources DENY

Page link:https//www.codepudding.com/Softwaredesign/364418.html

Prev:Issues creating a Json object that does not remove trail zeros
Next:How to cut till the last delimiter and get remaining part of a string
  • Related

About Us:  Contact Us      Terms of Service       Privacy Policy

Copyright © 2010-2023,Powered By CodePudding