private: reverse proxy only for certain remote IP's

I want to access private.domain.com only from my own (or whitelisted) IP's and deny access for everybody else:

Using .not to deny everything that is not in the list:

labels: 
  caddy private.domain.com
  caddy.@denied.not_0: "remote_ip _my_ip_ private_ranges"
  # caddy.@denied.not_1: "remote_host _mydynamic.host.name_" # only with the caddy_remote_host plugin!
  caddy.abort: "@denied"
  caddy.reverse_proxy: "{{upstreams}}"

replace my_ip with your ip :-)