Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Allow incoming connection to a URL based on IP address

    Firewalling
    2
    2
    1497
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • G
      gordc last edited by

      We would like to able to filter incoming connections based on the URL.  For example
      http://domain.com/site1
      http://domain.com/site2

      We would like to be able to filter at the firewall so that site1 is open to anyone but site2 will only allow access for a particular ip address.  We don't want to do this at the web server.

      Thanks Gord.

      1 Reply Last reply Reply Quote 0
      • johnpoz
        johnpoz LAYER 8 Global Moderator last edited by

        You would need a reverse type proxy for this sort of filtering.  Firewall has no way of looking at that traffic it just sees a connection from src IP:port to dst IP:port , so you either need to change the the dest IP or the port and then you could filter on src IP.

        You could look at the squid3 packare or the proxy server modsecurity package - both state they can be used as reverse proxy.  This should allow you to put in such filtering.

        1 Reply Last reply Reply Quote 0
        • First post
          Last post

        Products

        • Platform Overview
        • TNSR
        • pfSense
        • Appliances

        Services

        • Training
        • Professional Services

        Support

        • Subscription Plans
        • Contact Support
        • Product Lifecycle
        • Documentation

        News

        • Media Coverage
        • Press
        • Events

        Resources

        • Blog
        • FAQ
        • Find a Partner
        • Resource Library
        • Security Information

        Company

        • About Us
        • Careers
        • Partners
        • Contact Us
        • Legal
        Our Mission

        We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

        Subscribe to our Newsletter

        Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

        © 2021 Rubicon Communications, LLC | Privacy Policy