Connection filter
Load Balancer has a feature that allows to configure from
what ip addresses the connection are allowed or not. This
is useful, for example, to give restrict access to a
developement site.
The configuration directive for this feature is allowfrom
Under this tag, you can add filters that matches the ip addresses that
will be accepted. You can use regular expressions inside the rules
The configuration parameters for this tag are:
Option |
Description |
allowfrom |
This is the configuration directive. Under this, there are
rules that allows the connection for specific servers.
Configuration options
- enabled: This property allows the system to enable
(value yes) or disable (value no) the
Connection filter feature.
Rules
- ip: You can have a variable number of ip
rules inside a allowfrom tag. This rules
defines what ips can connect with the load
balancer. You can use regular expressions to
match a range of addresses. If the client ip
is not mached by any of the ip rules, the
connection is refused. Note also that the
matching is done in the same order that the
rules are inserted in the configuration
file; until the ip is matched or all the
rules are tested.
|
Allowfrom Sample
<allowfrom enabled="no">
<ip>192.167.*</ip>
<ip>127.0.0.1</ip>
<ip>172.16.*</ip>
</allowfrom>