Is it possible to restrict public internet access to non-production Oracle Commerce Cloud storefront

Is it technically and administratively feasible to restrict public internet access to non-production Oracle Commerce Cloud (OCC) storefront environments, such that only authorized internal users or networks can access them for testing and development purposes, while ensuring that any unauthorized access attempts from the public internet result in the storefront page not loading at all?