[
https://issues.apache.org/jira/browse/TS-4593?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15351961#comment-15351961
]
Alan M. Carroll commented on TS-4593:
-------------------------------------
I think it's reasonable. The goal is essentially the same as for inbound
connections. The syntax only needs to be extended to allow {{dest_ip}} which is
a simple change. The primary use case of this is to forbid outbound connections
to non-routable addresses which is quite difficult to do in remap. It would be
good to put a specific check in to see if there are any outbound rules and skip
the search/check if that's the case. I think it's a natural extension and I
don't see a better place to do it, other than requiring a plugin which
effectively duplicates the IP allow logic.
> Extend ip_allow.config to filter destination IPs
> ------------------------------------------------
>
> Key: TS-4593
> URL: https://issues.apache.org/jira/browse/TS-4593
> Project: Traffic Server
> Issue Type: Improvement
> Components: Core
> Reporter: Quinn Lertratanakul
> Assignee: Quinn Lertratanakul
> Priority: Minor
> Fix For: sometime
>
>
> We want to be able to block requests to IP ranges via ip_allow.config . For
> example, prevent ATS from remapping to origins with rfc1918 ips like
> 10.0.0.0/8 .
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
