Re: access control and Apache load balancing

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: users@xxxxxxxxxxxxxxxx
Subject: Re: access control and Apache load balancing
From: Yehuda Katz <yehuda@xxxxxxxxxx>
Date: Mon, 30 Jul 2018 13:32:20 -0400
In-reply-to: <BLUPR0201MB1761A63A9AB05D0FA1266CBDC92F0@BLUPR0201MB1761.namprd02.prod.outlook.com>
Reply-to: users@xxxxxxxxxxxxxxxx

You can filter based on the X-Forwarded-For header or use mod_remoteip.

mod_remoteip will rewrite the remote address so you can use standard filters.

To use X-Forwarded-For, you can do something like this:

SetEnvIF X-Forwarded-For "^192\.168\.10\.\d+$" MY_PRIVATE_NETWORK1

SetEnvIF X-Forwarded-For "^172\.16\.10\.\d+$" MY_PRIVATE_NETWORK2

Require env MY_PRIVATE_NETWORK1

Require env MY_PRIVATE_NETWORK2

</RequireAny>

- Y

On Mon, Jul 30, 2018 at 11:44 AM Rose, John B <jbrose@xxxxxxx> wrote:

Any suggestions on how to implement access control for ip address ranges to specific files on back end hosts when going thru Apache load balancer?

For example, you do not want external IPs to access "filename.php" on your backend hosts thru load balancer

References:
- access control and Apache load balancing
  - From: Rose, John B

Prev by Date: access control and Apache load balancing
Next by Date: apache 2.4 pfs and cipher configuration
Previous by thread: access control and Apache load balancing
Next by thread: apache 2.4 pfs and cipher configuration
Index(es):
- Date
- Thread

[Index of Archives] [Open SSH Users] [Linux ACPI] [Linux Kernel] [Linux Laptop] [Kernel Newbies] [Security] [Netfilter] [Bugtraq] [Squid] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Samba] [Video 4 Linux] [Device Mapper]