Reputation:
Apache : Restrict acces to webserver via IP (HTTP/HTTPS)
I run a website on a VPS and I would like to completely block access to the website via The VPS IP Address. I made it work for HTTP but It seems impossible for HTTPS. What I did:
<VirtualHost *:80>
ServerName xxx.xxx.xxx.xxx
Redirect 403 /
DocumentRoot /a/folder/here/
</VirtualHost>
This worked perfectly as expected for http://xx.xx.xx.xx
But I could not find a way to do the same for https://xx.xx.xx.xx
Anyone can help me please?
** I am using:**
Letsencrypt Certificat
Apache 2.4
Upvotes: 1
Views: 5325
Answers (2)
Reputation:
NOTE: the file containing this rule must be executed after other sites that use SSL.
ecample:
0-site1.conf = website using no ssl (port 80)
0-site1-ssl.conf = website using ssl (port 443)
1-direct-access-conf = the file containing:
<IfModule mod_ssl.c>
<VirtualHost *:443>
ServerName xxx.xxx.xxx.xxx
Redirect 403 /
DocumentRoot /a/folder/here/
</VirtualHost>
</IfModule>
Upvotes: 5
Reputation: 3300
Just do the same for the virtual host that is bonded to port 443:
<IfModule mod_ssl.c>
<VirtualHost *:443>
ServerName xxx.xxx.xxx.xxx
Redirect 403 /
DocumentRoot /a/folder/here/
</VirtualHost>
</IfModule>
Upvotes: 3
Related Questions
- Apache: Restrict access to specific source IP inside virtual host
- How to block by ip with Apache
- Deny certain IP's
- Cannot allow only particular IP Address access my website with apache 2.4
- Only allow certain IP's to access website, EXCEPT a specific URL (open to any IP)
- Prevent access to files through ip address - apache 2.4
- Block access from IP address in Apache2
- Restrict access to website from its ip address.
- How to exclude some IPs from authorization
- IP restriction with htaccess