Hi all
We have machine with nginx running on port 80 behind a hardware load balancer which has the ssl binded. Hence https is in load balancer and requests are transfered to nginx on port 80. No access without https.
Nginx is configured with logs with loadbalancer format which ensures source ip is also transfered to nginx and same is getting logged in logs.
We need to apply deny for certain location for certain ip along with allow for rest of the world. But with the following we are unable to achieve the goal. The configuration is as follows,
conf file
location /path/tobloack/ {
deny 1.2.3.4;
deny 5.6.7.8;
allow all;
}
location /path/toblock/ {
deny 1.2.3.4;
deny 5.6.7.8;
allow all;
}
nginx listens on port 80 only.
nginx version: nginx/1.9.2
when we access the page with 443 / https its not blocking the access.
ie : https://webaddress.com/path/toblock/ is not denied when accessing from ip 1.2.3.4.
Can some one help me where we are wrong.
Thanks
Raj
We have machine with nginx running on port 80 behind a hardware load balancer which has the ssl binded. Hence https is in load balancer and requests are transfered to nginx on port 80. No access without https.
Nginx is configured with logs with loadbalancer format which ensures source ip is also transfered to nginx and same is getting logged in logs.
We need to apply deny for certain location for certain ip along with allow for rest of the world. But with the following we are unable to achieve the goal. The configuration is as follows,
conf file
location /path/tobloack/ {
deny 1.2.3.4;
deny 5.6.7.8;
allow all;
}
location /path/toblock/ {
deny 1.2.3.4;
deny 5.6.7.8;
allow all;
}
nginx listens on port 80 only.
nginx version: nginx/1.9.2
when we access the page with 443 / https its not blocking the access.
ie : https://webaddress.com/path/toblock/ is not denied when accessing from ip 1.2.3.4.
Can some one help me where we are wrong.
Thanks
Raj