How to automate Origin Shield

Origin Shield provides the list of Azion Edge Nodes’ IP addresses.

go to secure an infrastructure

By activating Origin Shield, your application’s is protected from a network list maintained by Azion. The IP addresses in it change from time to time, but you can automate a behavior using Rules Engine to guarantee you’re always using the updated list.


  1. On Azion Console, navigate to Edge Firewall.
  2. Select the edge firewall in which you want to configure the rule.
  3. Click the Rules Engine tab.
  4. Click the + Rules Engine button.
  5. Give your rule a name and, optionally, a description.
  6. In the Criteria section, select the Network variable.
  7. As a comparison operator, select does not match.
  8. As an argument, select the Azion Origin Shield list.
  9. In the Behaviors section, select Drop (Close Without Response) from the behavior list.
  10. Click the Save button.

If your application receives a request generated from an IP that isn’t in the list, the edge firewall will drop the request.


Contributors