I looked up how to stop discourse from crawling/embedding link as to not leak server ip but every post says add nginix behind reverse proxy, im not smart enough to do that, I set it up behind Cloudflare tunnel a day ago and its been working great, a tut on how to only allow cf traffic would be great or how to turn user off embedding.
I don’t know, but I’m curious — why hiding IP of a server is important?
bad actors can directly ddos ip if they get it, mostly ddos related. we’ve gotten hit before but thanks to Cloudflare it helped.
for some added context, you can send an ip logger and when it crawls it, they get the IP
Security by obscurity isn’t a solution. You can firewall off the site to all except cloudflare.
2 Likes
I get that, but for now I’d rather do that, I don’t know how to block all traffic but cloudflare