Tyk Cloud and VPN

How do I set up a VPN or server to ensure that traffic is only coming from TykCloud? Would I whitelist ip addresses in Iptables or is there a better way of doing it? If it is iptables, where would I find the addresses to whitlist.

I dd have a bit of a root around the documentation but didn’t find anything.

Unfortunately not - the best way to secure your api from cloud is to inject a global shared secret header in tyk, and make sure that your service checks for it.