How do I block an IP address or network block with Varnish VCL?

ip varnish block

How does one block either IP address of network range inside of Varnish's VCL file?


Solution 1:

acl unwanted {
    "69.60.116.0"/24;
    "69.90.119.207";
}

sub vcl_recv {
    if (client.ip ~ unwanted) {
        error 410;
    }
...
}

Solution 2:

Since Varnish 4, the syntax has changed!

Instead of:

error 403;

you need to use:

return(synth(403, "Access denied"));

Using alexus' example:

acl unwanted {
    "69.60.116.0"/24;
    "69.90.119.207";
}

sub vcl_recv {
    if (client.ip ~ unwanted) {
        return(synth(403, "Access denied"));
    }
}

Related

What are the advantages of using Hyper-V's synthetic drivers?
Do I need to manually create a migration for a HABTM join table?
maven: Is it possible to override location of local repository via the use of command line option or env variable?
How do I merge another developer's branch into mine?
Event to detect when position:sticky is triggered
python format string thousand separator with spaces
Get dplyr count of distinct in a readable way
pyspark dataframe filter or include based on list
VueJS accessing a method from another method
What is Vue.extend for?
Present and dismiss modal view controller
What are arrows, and how can I use them?