Access Rules let you block unwanted traffic before it reaches your VDS.

They help you protect IP reputation, reduce scan noise, lower unnecessary VM load, and spend less time tuning guest firewall rules.

If you want the strongest protection, start with Allow only whenever your service only needs a small set of trusted IPs.

What you can do

• Block countries
• Block ASNs
• Allow only chosen IPs or CIDRs

You can use these rules on Ingress to control who can reach your service, or on Egress to control where your VM is allowed to connect.

That means you can also block outbound traffic to specific countries or ASNs if you do not want your VM talking to them.

How to use it

1. Open your VDS service page.
2. Click Access Rules.
3. Choose the rule type and direction.
4. Save the rule.
5. Wait for the live status to turn active, then test again.

Recommended approach

• Use Allow only for admin panels, private APIs, or any service that should only talk to known IPs.
• Use Ingress country or ASN blocks to reduce unwanted inbound traffic.
• Use Egress country or ASN blocks when you want to stop your VM from reaching certain networks.
• Save one change at a time, wait for the live status to turn active, then retest.

Notes

• Works on dedicated-IP VDS only. Shared NAT services are not supported.
• Allow only is strict. Traffic outside the listed IPs or CIDRs will be blocked.
• Deleting a rule also needs a short sync window.