Accessing StackExchange API behind a firewall - are there IP ranges to whitelist? [migrated]

ip-address support api

If possible, you can set up an HTTP / TLS reverse proxy in a DMZ, configure domain (hostname) whitelist on that proxy (e.g. sniproxy or HAProxy) and then resolve api.stackexchange.com onto that proxy. This has the additional benefit that it works for any external service and doesn't require a published IP address range list (and therefore no need to update your firewall rules periodically).

I've been doing this in my organization for some time, though not for security purposes. We use Debian as our routers so managing these requires just Linux knowledge.

I'm just sharing my alternative solution here. Of course an official response is the right answer to this question.

Related

Find $f(x)$ such that $f(x)+f\left(\frac{1}{x}\right)=f(x)\cdot f\left(\frac{1}{x}\right)$
Is there a way to write this expression differently: $\arctan 1/(1+n+n^2)$?
Why is $Sp(2m)$ as regular set of $f(A)=A^tJA-J$, and, hence a Lie group.
Proof of a binomial identity $\sum_{k=0}^n {n \choose k}^{\!2} = {2n \choose n}.$
Comparing LU or QR decompositions for solving least squares
Show that $1\otimes (1,1,\ldots)\neq 0$ in $\mathbb{Q} \otimes_{\mathbb{Z}} \prod_{n=2}^{\infty} (\mathbb{Z}/n \mathbb{Z})$.
Units in quotient ring of $\mathbb Z[X]$
Different Applications of Sylow Theorems
a.s. Convergence and Convergence in Probability
Functions defined by integrals (problem 10.23 from Apostol's Mathematical Analysis)
Why is the definition of stronger statement the way it is in logic?
Euler's formula, is this true? [duplicate]