Block request if host == IP

fdellwing · October 5, 2018, 1:25pm

Hi,

I would like to block all requests that use any of the ip addresses of the server as host. Is there an easier way than acl is_ip hdr(host) -i 1.2.3.4 -i 4.3.2.1?

Greetings

lukastribus · October 5, 2018, 1:31pm

Well, any ip addresses than really, right? I suggest you use regular expressions.

fdellwing · October 5, 2018, 1:33pm

Can I just use acl is_ip hdr(host) -i \d{1,3}.\d{1,3}.\d{1,3}.\d{1,3}? Or how does that work?

lukastribus · October 5, 2018, 1:54pm

Yes, just call -m reg and also escape the dot:

acl is_ip hdr(host) -i -m reg \d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}

Topic		Replies	Views
Haproxy acl to block ips and host header Help!	2	2220	December 17, 2020
Haproxy acl on ip range with ip from header instead of src Help!	4	2035	January 6, 2021
Deny request base on http request url Help!	1	422	March 23, 2020
Strange question about hdr_dom(host) function Help!	2	920	October 23, 2017
Parameters of hdr_beg -i <arg> Help!	1	160	December 4, 2023

Block request if host == IP

Related Topics