Cloud app's ip address ranges is not enough?

I am developing a confluence cloud app which is hosted at GCP.
I want to add GCP Armor to control the IP which only in atlassian’s ip address range.
I have add all of ip address of [ Atlassian cloud products and sites],[ Outgoing Connections],[ Outbound email] in this page.

But when I add the policy, I find my plugin’s page is going to 403 Fobbiden.
What are the exact IP addressed to be allowed for my plugin to work?

Hi @11199,

I don’t know how GCP Armor works, but given that your users will need to be able to interact with your app server directly through their browser (unless your app has no UI/config page and solely consists of a backend), I don’t think restricting the allowed incoming ip address range makes a lot of sense.