How to block zero trust connectivity
How to block Cloudflare within a specific IP range? Users within the IP range would be unable to connect to the zero trust network, while those outside of this IP range or network would still be able to connect.
1 Reply
you either need to use dedicated egress IPs (https://developers.cloudflare.com/cloudflare-one/policies/gateway/egress-policies/dedicated-egress-ips/#:~:text=Dedicated%20egress%20IPs%20are%20static,routing%20traffic%20through%20Cloudflare's%20network) or you can have a condition in your ZT policy to only permit certain conditions to your origin (such as mTLS)
Dedicated egress IPs · Cloudflare Zero Trust docs
Dedicated egress IPs are static IP addresses that can be used to allowlist traffic from your organization. These IPs are unique to your account and …