-m ip 172.16.0.0/12
>acl forbidden_dst url_dom -m ip 10.0.0.0/8
>
>
> -- Forwarded message --
> From: Pavlo Zhuk <pa...@lotusflare.com>
> Date: Thu, Oct 1, 2015 at 2:13 PM
> Subject: url_ip is not properly extracted in HTTP CONNECT method ?
> To: haprox
Dears,
I am trying to filter traversal access to my lan via HTTP CONNECT method.
And I tried to use acl with url_ip based on private ip range constants.
Apparently this method works for HTTP GET, but isn't working for HTTP
CONNECT.
Is there any other way to inspect HTTP CONNECT destination?
My
forbidden_dst url_dom -m ip 192.168.0.0/24
acl forbidden_dst url_dom -m ip 172.16.0.0/12
acl forbidden_dst url_dom -m ip 10.0.0.0/8
-- Forwarded message --
From: Pavlo Zhuk <pa...@lotusflare.com>
Date: Thu, Oct 1, 2015 at 2:13 PM
Subject: url_ip is not properly extracted i
3 matches
Mail list logo
