Currently, the WordPress server can receive SSH ingress from up to 5 CIDR blocks, just like a bastion host. However, it is assumed, by the time a user is creating a WordPress server stack, that they have already created their necessary bastion hosts as well. Therefore, the only CIDR block that should have SSH access to a WordPress server is that of the bastion hosts' subnet.
Currently, the WordPress server can receive SSH ingress from up to 5 CIDR blocks, just like a bastion host. However, it is assumed, by the time a user is creating a WordPress server stack, that they have already created their necessary bastion hosts as well. Therefore, the only CIDR block that should have SSH access to a WordPress server is that of the bastion hosts' subnet.