Acl on host and past

Alpha_Dan · March 11, 2024, 12:57pm

I need to allow only private network (rfc1918) to access on the website www.test.com and all the IP to path start with chain /test1

thank’s for your help Regard

I also try this but don’t work

    use_backend pool_server if { path_beg -i -m beg /test1}
    http-request deny if { path_dir -i -m beg / } !{ src 192.168.0.0/16 172.16.0.0/12 10.0.0.0/8 }

    default_backend pool_server

and with this configuration the css…etc in /static don’t load.
I think I need to only allow rfc1918 on www.test.com and allow of the /* but I don’t know how do this .

Regards

jbrahy · March 24, 2024, 9:41am

Are your CSS files in the /test1 directory?

acl white_list src 192.168.0.0/16 172.16.0.0/12 10.0.0.0/8
acl test_dir path,url_dec -m beg -i /test1
use backend if white_list test_dir

or maybe

http-request deny if !{  path,url_dec -m beg -i /test1 } !{ src 192.168.0.0/16 172.16.0.0/12 10.0.0.0/8 }

Topic		Replies	Views
Allowing only some paths - not working as planned Help!	1	486	May 19, 2021
PFsense custom acl whitelist IP alias backend specific block reject others Help!	3	3841	November 27, 2020
Config for allowing root path + two other paths, and deny all the other paths Help!	2	586	July 14, 2023
ACL match, rewrite and redirect Help!	2	63	April 14, 2024
I can't get the "http-request deny" function to work Help!	2	2534	March 26, 2021

Acl on host and past

Related Topics