I’m looking to open up a site with a login portal to the internet, but I’m hoping to avoid the page getting scanned too much and avoid bruteforce attempts on the login. I know there are some solutions that already exist like Fail2Ban, but I’m hoping for something different if it exists.
My thinking is that I’d like to put an IP filter on the page, but that I could “automate” adding IP addresses somehow. I was thinking I could have some sort of authentication server where I could email someone a unique URL that they would click on and provide some kind of information confirming that they’re who they say they are. Once confirmed, the public IP that was used to access the unique URL would be added to a whitelist that would allow access to the login portal.
Is there a service that exists that could do something like this? I had a quick look at Authelia and SuperTokens, but I’m not sure if that’s what I’m looking for.
Maybe use cloudflare, then create a firewall rule that limits connections to 80/443 inbound ONLY from Cloudflares subnets?
You can then get some pretty decent metrics and they even have a bot filter along other stuff