IP Addressing on Apache

Question

IP Addressing on Apache

I need to block access to the entire site through the IP address, except for the url / api, which should be open to everyone.

I am currently using ...

<LocationMatch /admin>
    Order Deny,Allow
    Deny from all
    Allow from [MY IP]
</LocationMatch>

this blocks access URLs starting with / admin. But I want to block all urls except those that run / api.

Chris

+1

security php apache cakephp

Chris rowe Oct 12 '09 at 13:39

source share

2 answers

Eddie · Answer 1 · 2009-10-12T14:41:38+0000

RewriteEngine On # (only needs to happen once in .htaccess files.

RewriteBase /
RewriteCond %{REMOTE_ADDR} !^10\.103\.18\.104     # <--YOUR IP HERE
RewriteCond %{REQUEST_URI} !^/api    # page or directory to ignore                   
RewriteRule ^(.*)$ http://example.com/no_access.html [R=401] # where to send blocked requests

mauris · Answer 2 · 2009-10-12T14:33:02+0000

Ok, you can block the whole site first and then just enable / api.

<LocationMatch />
    Order Deny,Allow
    Deny from all
    Allow from [MY IP]
</LocationMatch>

<LocationMatch /api>
    Order Deny,Allow
    Allow from all
</LocationMatch>

Sorry, I couldn’t verify it due to the way XAMPP was configured on my PC. Pray for it.

IP Addressing on Apache

More articles: