• Secure
• Secure Infrastructure

Once you’ve created an edge firewall and secured your application, you can use Origin Shield to secure your infrastructure by blocking threats.

Origin Shield works as a list of IP/CIDR addresses used in Azion’s Edge, thus providing assurance of safe IPs to allow access. The list is maintained by Azion and available via Azion Console and API, but each client must create automation to guarantee their security policies are always up-to-date with the Origin Shield addresses.

To access the Origin Shield list, you must have:

• An edge firewall created.
• The Network Layer Protection module enabled.
• Be subscribed to the Origin Shield add-on. Contact the sales team to subscribe to this feature.

1. Access Azion Console > select Network Lists.
2. Select Azion Origin Shield.
3. On the List field, you can copy the IP addresses list.

1. Run the following GET request in your terminal, replacing [TOKEN VALUE] with your personal token

curl --location 'https://api.azionapi.net/network_lists' \
--header 'Accept: application/json; version=3' \
--header 'Authorization: Token [TOKEN VALUE]'

2. You’ll receive a response similar to this:

{
  "count": 4,
  "total_pages": 1,
  "schema_version": 3,
  "links": {
    "previous": null,
    "next": null
  },
  "results": [
    {
      "id": 2345,
      "last_editor": "last.editor@azion.com",
      "last_modified": "2023-03-27T21:19:27.996870Z",
      "list_type": "ip_cidr",
      "name": "Azion Origin Shield",
      "country_list": [],
      "ip_list": [
        "192.168.0.5"
      ]
    }
  ]
}

3. On the ip_list field, you’ll receive all IPs added by Azion. You can copy the IP addresses list.

After having access and checking the list of IP addresses provided by Origin Shield, you can create an automation with Rules Engine, ensuring your infrastructure is always protected with the most recent version of safe IPs.

Contributors