Some urls of nginx can only be accessed by specific network segments - Code World

Some urls of nginx can only be accessed by specific network segments

Enterprise 2023-08-15 19:34:27 views: null

In Nginx, only specific network segments are allowed for certain URLs, and the following configuration can be used:

location /restricted {
    allow 192.168.1.0/24;
    deny all;
}

The above configuration will deny all IP addresses to access the /restricted URL path, except all IP addresses in the IP address range of 192.168.1.0/24.

If you want to allow access from multiple network segments, you can add multiple network segments after the allow command, for example:

location /restricted {
    allow 192.168.1.0/24;
    allow 10.0.0.0/8;
    allow 172.16.0.0/12;
    deny all;
}

The above configuration indicates that only all IP addresses within the above three IP address ranges are allowed to access the /restricted URL path.

It should be noted that the allow and deny commands of Nginx are executed in order. Therefore, when using multiple allow and deny commands, you need to pay attention to their position and sequence. At the same time, it should be noted that when using the subnet mask to restrict access, ensure that the matching relationship between the subnet mask and the IP address is correct, otherwise unexpected problems may occur.

Guess you like

Origin blog.csdn.net/m0_50758217/article/details/130369757

Some urls of nginx can only be accessed by specific network segments

There are multiple external network addresses under the firewall network interface. Only the first address can be accessed and the others cannot be accessed.

nginx builds a virtual host, the internal network can access the external network and cannot be accessed

Some specific terms in computer network

docker nginx configuration https can not be accessed

All other websites can be accessed, only GitHub cannot access

Web pages can only be accessed in WeChat's built-in browser

mysql, redis, and RabbitMQ can only be accessed locally, how to change?

Some road ah, a person can only go

Mysql settings can be accessed within the local area network

node server deployed on Ali cloud can not be accessed by the public network IP

The method of generating a domain name that can be accessed by the external network

[SQL SERVER] ALWAYS ON across network segments can not FAILOVER

How can I get only specific values from an Arraylist

How can i return only specific information with findAll() instead of everything?

Larval routing configuration: Only the root path '/' can be accessed, other routes return 404 errors

Some URLs for my own use

Ubuntu16 host network connection provided under VMware, can be provided in Ubuntu VMware accessed by the host xshell

Without a public IP, how can a self-built website be accessed from the external network?

WordPress blog published to the public network can be accessed [windows system and linux system operation]

The host can access the public network but cannot be accessed in the Docker container. Temporary failure in name resolution

SSH tunnel is easy to build and use; the local computer LAN can be accessed through the external network

Build services that can be accessed remotely: Use Apache and intranet penetration to achieve public network access

Integrate FastDFS and Nginx, so that the generated file URL can be accessed through a browser

Nginx configures https access to generate ssl self-signed certificates, which can be directly accessed by browsers

@RequestBody can only be used with @RequestHeader and cannot be used with @RequestParam (some methods of the iterative function are called only once, and then passed on)

[Mobile website building] Android Termux+cpolar intranet penetration, build a website that can be accessed from the external network - no public network IP

The most likely reason why PING can communicate with nodes in the same network segment, but if PING fails to communicate with all nodes in other network segments

Solve / actuator / beans can not be accessed

webpack server can be accessed on LAN

Recommended

Ranking

error: (-215:Assertion failed) !_img.empty() in function ‘cv::imwrite‘

Database migration between Navicat servers

Minimum number of rotation of the array: Array

balenaEtcher for mac (make a boot disk software) v1.5.67

Custom processing serialization and deserialization in jackson

Mu-en-mask system development software

Mastering Regular Expressions

Find mileage Java--

Web pages can not directly concern the public micro-channel number how to do? A key to arouse public concern number of micro-channel solutions

[CodeForces - 739B] Alyona and a tree Tree + [difference] + bipartite

Daily

More

2024-05-12(28)

2024-05-11(32)

2024-05-10(34)

2024-05-09(32)

2024-05-08(18)

2024-05-07(34)

2024-05-06(6)

2024-05-05(0)

2024-05-04(18)

2024-05-03(8)