Whitelisted access to pg?

We’re considering using Fly as a data warehouse, but to do so, I need to allow a third party to write to my postgres instance. Since it’s outside the Fly network I can’t rely on private networking, and yet I don’t want to open pg up publicly.

Is there a way to whitelist an incoming IP address?