---
doc/configuration.txt | 16 +++++++++-------
1 file changed, 9 insertions(+), 7 deletions(-)
diff --git a/doc/configuration.txt b/doc/configuration.txt
index b66267e..775781d 100644
--- a/doc/configuration.txt
+++ b/doc/configuration.txt
@@ -2468,17 +2468,18 @@ bind-process [ all | odd | even | <number
1-64>[-<number 1-64>] ] ...
See also : "nbproc" in global section, and "process" in section 5.1.
-block { if | unless } <condition> (deprecated)
+block [deny_status <status>] { if | unless } <condition> (deprecated)
Block a layer 7 request if/unless a condition is matched
May be used in sections : defaults | frontend | listen | backend
no | yes | yes | yes
The HTTP request will be blocked very early in the layer 7 processing
- if/unless <condition> is matched. A 403 error will be returned if the request
- is blocked. The condition has to reference ACLs (see section 7). This is
- typically used to deny access to certain sensitive resources if some
- conditions are met or not met. There is no fixed limit to the number of
- "block" statements per instance.
+ if/unless <condition> is matched. A 403 error or optionally the status
+ code specified as an argument to "deny_status" will be returned if the
+ request is blocked. The condition has to reference ACLs (see section 7).
+ This is typically used to deny access to certain sensitive resources if
+ some conditions are met or not met. There is no fixed limit to the
+ number of "block" statements per instance.
This form is deprecated, do not use it in any new configuration, use the new
"http-request deny" instead.
@@ -2489,7 +2490,8 @@ block { if | unless } <condition> (deprecated)
acl local_dst hdr(host) -i localhost
block if invalid_src || local_dst
- See section 7 about ACL usage.
+ See also : "http-request deny", "http-response deny" as well as
+ section 7 about ACL usage.
capture cookie <name> len <length>
--
1.8.3.1
