trafficserver-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Luca Rea <luca....@contactlab.com>
Subject R: Re: Allow only one host access to sub-url
Date Tue, 23 Oct 2012 20:57:39 GMT
map             https://www.example.com/service/
http://backend.example.com/service/ @src_ip=0.0.0.0-192.168.11.10
@action=deny @src_ip=192.168.11.11 @action=allow
@src_ip=192.168.11.12-254.254.254.254 @action=deny






Luca Rea

Reparto IT
System engineer
__________________________________

ContactLab s.r.l.
Via Natale Battaglia 12
20127 Milano
Tel. +39.02.283118.1
Fax. +39.02.70030269
http://www.contactlab.com
__________________________________

E-mail & E-marketing Evolution


----- Messaggio originale -----
Da: Jan-Frode Myklebust [mailto:janfrode@tanso.net]
Inviato: Tuesday, October 23, 2012 09:33 PM
A: users@trafficserver.apache.org <users@trafficserver.apache.org>
Oggetto: Re: Allow only one host access to sub-url

On Tue, Oct 23, 2012 at 9:22 PM, Luca Rea <luca.rea@contactlab.com> wrote:
> Try this:
> map  https://www.example.com/service/
> http://backend.example.com/service/ @src_ip=0.0.0.0-8.8.8.7 @action=deny @src_ip=8.8.8.8
@action=allow
> @src_ip=8.8.8.9-254.254.254.254 @action=deny
>

I tried this now:

map             https://www.example.com/service/
http://backend.example.com/service/ @src_ip=0.0.0.0-192.168.11.10
@action=deny @src_ip=192.168.11.11 @action=allow
@src_ip=192.168.11.12-254.254.254.254 @action=deny

and when connecting from 192.168.11.11 i get 403:

$ GET https://www.example.com/service/ |head -1
<HEAD><TITLE>Access Denied</TITLE></HEAD>

and in the common.log:

    192.168.11.11 - - [23/Oct/2012:21:31:13 +0100] "GET
http://backend.example.com/service/ HTTP/1.1" 403 228




  -jf



Mime
View raw message