osdir.com

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [users@httpd] access control and Apache load balancing


You can filter based on the X-Forwarded-For header or use mod_remoteip.
mod_remoteip will rewrite the remote address so you can use standard filters.

To use X-Forwarded-For, you can do something like this:
SetEnvIF X-Forwarded-For "^192\.168\.10\.\d+$" MY_PRIVATE_NETWORK1
SetEnvIF X-Forwarded-For "^172\.16\.10\.\d+$" MY_PRIVATE_NETWORK2
<RequireAny>
Require env MY_PRIVATE_NETWORK1
Require env MY_PRIVATE_NETWORK2
</RequireAny>

- Y

On Mon, Jul 30, 2018 at 11:44 AM Rose, John B <jbrose@xxxxxxx> wrote:

Any suggestions on how to implement access control for ip address ranges to specific files on back end hosts when going thru Apache load balancer?


For example, you do not want external IPs to access "filename.php" on your backend hosts thru load balancer