It seems that the whistelist is not working as expected for
haproxy -V
HA-Proxy version 2.0.13-2ubuntu0.1 2020/09/08 - https://haproxy.org/
the setup is the following in haproxy.cfg
acl Whitelist src -f /etc/haproxy/Whitelist.acl
http-request allow if Whitelist
i tried different version of the file with with no success :
haproxy[6696]: 66.249.70.86:47620 [27/Feb/2021:10:51:32.539] webfront~ dynamic/vm028 0/0/0/2/2 403 2684 … “GET / HTTP/1.1”
haproxy[6696]: 66.249.64.63:36109 [27/Feb/2021:10:51:32.490] webfront~ dynamic/vm028 0/0/0/2/2 403 2739 … “GET / HTTP/1.1”
i can access the file
haproxy[6696]: myIP:52597 [27/Feb/2021:11:22:37.249] webfront~ dynamic/vm028 0/0/2/4/6 200 4433 ... "GET / HTTP/1.1"
first i tried
cat /etc/haproxy/Whitelist.acl
66.249.64.0/19
for the following range
NetRange: 66.249.64.0 - 66.249.95.255
CIDR: 66.249.64.0/19
then we tried
cat /etc/haproxy/Whitelist.acl
66.249.64.0/24
66.249.65.0/24
66.249.66.0/24
66.249.68.0/24
66.249.69.0/24
66.249.70.0/24
66.249.71.0/24
66.249.72.0/24
66.249.73.0/24
66.249.74.0/24
66.249.75.0/24
66.249.76.0/24
66.249.77.0/24
66.249.78.0/24
66.249.79.0/24
66.249.80.0/24
66.249.81.0/24
66.249.82.0/24
66.249.83.0/24
66.249.84.0/24
66.249.85.0/24
66.249.86.0/24
66.249.87.0/24
66.249.88.0/24
66.249.89.0/24
66.249.90.0/24
66.249.91.0/24
66.249.92.0/24
66.249.93.0/24
66.249.94.0/24
66.249.95.0/24
Any help would be very appreciated
Thanks
1 post - 1 participant