I'm not sure how bulletproof is this approach, but here it is, collected from answers around the web:

我不确定这种方法的防弹能力如何，但它是从网络上的答案中收集的：

var http = require('http');
http.createServer(function (req, res)
{
    var ip = req.ip || req.connection.remoteAddress || req.socket.remoteAddress || req.connection.socket.remoteAddress;
    if (ip == '127.0.0.1') // exit if it's a particular ip
        res.end();
...

Please, someone more proficient in node - correct me

请更精通节点的人 - 纠正我

If you are restricting access to the entire serverby network address, it is best to put those rules in your firewall. If you want to handle it at the application layer for some reason (ease of configuration, dynamic authorization, etc.) then it is best to do this immediately upon connection rather than waiting for an HTTP request.

如果您通过网络地址限制对整个服务器的访问，最好将这些规则放在您的防火墙中。如果您出于某种原因（易于配置、动态授权等）想在应用程序层处理它，那么最好在连接时立即执行此操作，而不是等待 HTTP 请求。

Node.js' http.Server emits a connectioneventwhich you can use to determine the remote address and kill the connection before (or during) the actual HTTP request. This code is untested but should get you started:

Node.js 的http.Server 发出一个connection事件，您可以使用它来确定远程地址并在实际 HTTP 请求之前（或期间）终止连接。此代码未经测试，但应该可以帮助您入门：

var server = http.createServer(function (req, res) {
  // Your normal request handling goes here
});

server.on('connection', function (sock) {
  console.log(sock.remoteAddress);
  // Put your logic for what to do next based on that remote address here
});

server.listen(80);