Hi everyone, In the work of refusing from publicly routable IP addresses (KUDU-1875), it would be useful to provide users a way to whitelist any 'trusted' but publicly IP address. So that unauthenticated connections coming from those public IP addresses will not be rejected.
One way I am proposing here, is to provide a Gflag that can take a list of subnet (in CIDR notation). And consider those subnet as trusted and do not refuse any unauthenticated connections. Please let me know your thoughts or if you have any alternatives in mind. Thanks a lot! Best, Hao
