DEV Community

Cover image for 🚫3 Ways to Geo-Restrict your App
Anuvindh for AWS Community Builders

Posted on • Edited on

6 1

🚫3 Ways to Geo-Restrict your App

DAY 19 -🚫 3 Ways to geo-restrict your App - Day Nineteen

Image clicktotweet

100 days of Cloud on GitHub - Read On iCTPro.co.nz - Read on Dev.to


In this tutorial i will show demo of , restricting your application to specific country.

📝Prerequsite

Access to your WAF, Cloud Front, Route53 and privileges to manage it

🌩️ Using CloudFront

  • Login into Console and goto CloudFront Image Cloudfront
  • Select your cloud front Distribution
    Image distribustion

  • Go to Geographic Restrictions and select edit
    Image edit

  • Select Block list, and type in the country you want to restrict. and click Save changes
    Image restrict

🛡️ Using WAF & Shield

  • Login to console and go to WAF & Shield Image waf
  • Select your Web ACLs and go to Rules. Then Click Add my own rules and rule group
    Image ownrule

  • Select Rule Builder and Name the rule.
    Image name

  • Select inspect as Originates from a country in and type the bad country you want to restrict access.
    Image block country

  • Then select Action as Block then click Add rule.
    Image blockrule

🛣️ Using Route53

  • Here the concept is a bit different rather than blocking them completely , what route53 does is it will redirect traffic from selected country to a diffrent end point which can be an s3 hosted site which says " You don't have access to this website from your country".

    • Check out this Tutorial to see how can you create a website with s3.
    • once you host your site on s3 for the Bad-Country , you can just point it with R53.
  • Login into Console and goto Route53.

    Image r53

  • Click on to your Hosted Zones and select Traffic policies.

  • Now clcik and create Create Traffic Policy

  • Name the PolicyImage name

  • Enter information as shown below. and click Create Traffic Policy

    Image map

  • Select your Domain and Click Create Policy Records

    Image r53policy

Remember there is $50 charge for this so its recommended to use first two options

🎉Congratulations🎉 you have successfully blocked access to your app for a unauthorised Country.


✅Connect with me on Twitter
🤝🏽Connect with me on Linkedin
🧑🏼‍🤝‍🧑🏻 Read more post on dev.to or iCTPro.co.nz
💻 Connect with me on GitHub

Image of Timescale

🚀 pgai Vectorizer: SQLAlchemy and LiteLLM Make Vector Search Simple

We built pgai Vectorizer to simplify embedding management for AI applications—without needing a separate database or complex infrastructure. Since launch, developers have created over 3,000 vectorizers on Timescale Cloud, with many more self-hosted.

Read full post →

Top comments (0)

Best Practices for Running  Container WordPress on AWS (ECS, EFS, RDS, ELB) using CDK cover image

Best Practices for Running Container WordPress on AWS (ECS, EFS, RDS, ELB) using CDK

This post discusses the process of migrating a growing WordPress eShop business to AWS using AWS CDK for an easily scalable, high availability architecture. The detailed structure encompasses several pillars: Compute, Storage, Database, Cache, CDN, DNS, Security, and Backup.

Read full post