From 89c38892629bbfdbacfee1357c849534b849d5e0 Mon Sep 17 00:00:00 2001
From: RustDesk <71636191+rustdesk@users.noreply.github.com>
Date: Wed, 28 Jan 2026 00:24:04 +0800
Subject: [PATCH] Updated FAQ (markdown)

---
 FAQ.md | 21 +++++++++++++++++++++
 1 file changed, 21 insertions(+)

diff --git a/FAQ.md b/FAQ.md
index e7e9500..c48f79c 100644
--- a/FAQ.md
+++ b/FAQ.md
@@ -705,6 +705,27 @@ Example: https://github.com/rustdesk/rustdesk/pull/13453
 Example: https://github.com/rustdesk/rustdesk/pull/13453
 
 
+# Possibilities to limit access to webconsole by IP/subn
+
+All web console files start with `/static/`, all api start with `/api/`. If you use NGINX, you can write some NGINX rule to limit what you want.
+
+e.g.
+
+```
+     location /static/ {
+         allow 192.168.1.0/24;    # Your office network
+         allow 10.0.0.0/8;        # Private networks  
+         allow YOUR.HOME.IP.HERE; # Your home IP
+         deny all;
+
+         proxy_pass http://127.0.0.1:21114;
+         proxy_set_header Host $host;
+         proxy_set_header X-Real-IP $remote_addr;
+     }
+```
+
+https://github.com/rustdesk/rustdesk-server-pro/issues/833#issuecomment-3588117836
+
 
 # Delete devices with API