trafficserver-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Jan-Frode Myklebust <janfr...@tanso.net>
Subject Re: Allow only one host access to sub-url
Date Tue, 23 Oct 2012 19:33:48 GMT
On Tue, Oct 23, 2012 at 9:22 PM, Luca Rea <luca.rea@contactlab.com> wrote:
> Try this:
> map  https://www.example.com/service/
> http://backend.example.com/service/ @src_ip=0.0.0.0-8.8.8.7 @action=deny @src_ip=8.8.8.8
@action=allow
> @src_ip=8.8.8.9-254.254.254.254 @action=deny
>

I tried this now:

map             https://www.example.com/service/
http://backend.example.com/service/ @src_ip=0.0.0.0-192.168.11.10
@action=deny @src_ip=192.168.11.11 @action=allow
@src_ip=192.168.11.12-254.254.254.254 @action=deny

and when connecting from 192.168.11.11 i get 403:

$ GET https://www.example.com/service/ |head -1
<HEAD><TITLE>Access Denied</TITLE></HEAD>

and in the common.log:

    192.168.11.11 - - [23/Oct/2012:21:31:13 +0100] "GET
http://backend.example.com/service/ HTTP/1.1" 403 228




  -jf

Mime
View raw message