This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to restrict access to reverse-proxy by IP?

I have a number of virtual web servers set up. One of these I want to restrict access to based on IP. I tried putting a deny all rule in the firewall but it doesn't block it. I don't see any rules about port 80/443 in the automatically created firewall rules. How to I restrict access to the virtual web server by IP?

This thread was automatically locked due to age.

Parents

0 BAlfson over 10 years ago

See #2 in Rulz. The only way to achieve what you want is with two NAT rules, in order:
NoNAT : {Allowed IPs} -> HTTP/S -> External [webservers]
DNAT : Internet -> HTTP/S -> External [webservers] (Address) : to {non-existent IP)

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 BAlfson over 10 years ago

See #2 in Rulz. The only way to achieve what you want is with two NAT rules, in order:
NoNAT : {Allowed IPs} -> HTTP/S -> External [webservers]
DNAT : Internet -> HTTP/S -> External [webservers] (Address) : to {non-existent IP)

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data