Possible to limit acces to container from www by ip?

For example: I wanna allow only one ip to be able to access my database.

Given that you have closed this issue I assume you were able to solve this. In case you weren't, or anyone else comes across this ticket: this is possible, yes. You can provide the source_cidr_v{4,6} fields in your wider-world-to-container rule. More details on this can be found:

In the configuration reference: https://dfw.rs/latest/dfw/types/struct.WiderWorldToContainerRule.html#structfield.source_cidr_v4.

In one of the configurations that is used for automatic testing:

dfw/resources/test/docker/05/conf.toml

Lines 26 to 38 in 2c1f283

    
           [[wider_world_to_container.rules]] 
        
           network = "PROJECT_default" 
        
           dst_container = "PROJECT_a_1" 
        
           expose_port = "22" 
        
           source_cidr_v4 = "192.0.2.1/32" 
        
           source_cidr_v6 = "2001:db8::1/128" 
        
           [[wider_world_to_container.rules]] 
        
           network = "PROJECT_default" 
        
           dst_container = "PROJECT_a_1" 
        
           expose_port = "25" 
        
           source_cidr_v4 = ["192.0.2.2/32", "192.0.2.3/32"] 
        
           source_cidr_v6 = ["2001:db8::2/128", "2001:db8::3/128"]

.

	[[wider_world_to_container.rules]]
	network = "PROJECT_default"
	dst_container = "PROJECT_a_1"
	expose_port = "22"
	source_cidr_v4 = "192.0.2.1/32"
	source_cidr_v6 = "2001:db8::1/128"

	[[wider_world_to_container.rules]]
	network = "PROJECT_default"
	dst_container = "PROJECT_a_1"
	expose_port = "25"
	source_cidr_v4 = ["192.0.2.2/32", "192.0.2.3/32"]
	source_cidr_v6 = ["2001:db8::2/128", "2001:db8::3/128"]