This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

WAF restrict some websites

Hi,

I have enabled WAF and it runs great..
However, there are some website/services that I really would like to restrict access to so that only a few IPs can access it.
For example administration interfaces on some of the webservers on a special port - I mapped those via subdomain and WAF/reverse proxy but I really can't figure out how to restrict only those websites and not all since everything hits the Astaro on port 80 and everything from there is on inside network.

Any suggestions ?

This thread was automatically locked due to age.

Parents

0 BarryG over 15 years ago

please see Astaro Gateway Feature Requests for feature requests.

Note that the OpenSSL VPN may still work even if pptp and l2tp are blocked.

You could NAT the VPN Pool to get around the IP conflict, but that would make things more complicated.

Barry
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 BarryG over 15 years ago

please see Astaro Gateway Feature Requests for feature requests.

Note that the OpenSSL VPN may still work even if pptp and l2tp are blocked.

You could NAT the VPN Pool to get around the IP conflict, but that would make things more complicated.

Barry
Cancel
Vote Up 0 Vote Down

Cancel

Children

0 Vels over 15 years ago in reply to BarryG

Thanks Barry,

I will find a way... just figured I would ask about the access rules for virtual webservers since with physical servers on dnat they can be controlled in the packagefilter and I missed the alike on virtual ones.

What about the heavy logging from the Web application firewall?

I see no reason to log every allowed request to websites, I would rather just log "the bad things" like attempts on attack and so on.
Cancel
Vote Up 0 Vote Down

Cancel