2
HAProxy block all IPs except a small collection
(alien.top)
A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.
For Example
We welcome posts that include suggestions for good self-hosted alternatives to popular online services, how they are better, or how they give back control of your data. Also include hints and tips for less technical readers.
Useful Lists
In your frontend have something like
acl is_whitelisted src -f /etc/hapee-2.6/ipwhitelists/mywhitelist
mywhitelist would contain a cidr or list of cidrs
xxx.xxx.xxx.xxx/32
xxx.xxx.xxx.xxx/32
and then you'd have
use_backend rproxy_ssl if is_whitelisted
So I don't need to do an && statment or something ?
I can just do
use_backend manage_ssl if is_whitelisted
use_backend manage_ssl if { req_ssl_sni -i management.example.com }
or would i have to do something like
use_backend manage_ssl if { req_ssl_sni -i management.example.com } && if is_whitelisted