Nginx return `444` on deny

nginx firewall

I have an Nginx instance where I only want to allow certain IP ranges:

allow 192.168.0.0/16;
deny all;

This works fine, however when denied, a 403 is returned.

I don't denied IPs to know I have a web server at all. However can I return 444 instead, aka drop the packet?


Solution 1:

actually you can use geo directive, also if and return directive to achieve what you mean. Here is configuration you need to use:

http{
    ...
    geo $remote_addr $allowed_trafic {
        default false;
        192.168.0.0/16 true;
    }
}
server {
    ...
    if ( $allowed_trafic = 'false'){
        return 444;
    }
    ...
}

Hope this help you. Thanks.

Solution 2:

You could try this one:

  1. create file "ip.conf", then include to "nginx.conf"
  2. The "ip.conf" should look like:
geo $bad_ip {
    192.168.0.0/16;
    10.0.0.0/16;
    default 1;
}
  1. The "app.conf" file should look like:
location / {
        if ($bad_ip) {
            return 444;
        }
        proxy_pass http://app/;
}

Related

Dismissing the keyboard in a UIScrollView
What is a practical, real world example of the Linked List?
Apache not starting in MAMP (but MySQL working) in OSX
How to set ChartJS Y axis title?
Python's requests "Missing dependencies for SOCKS support" when using SOCKS5 from Terminal
Duplicate symbol issues
Angular 5 Button Submit On Enter Key Press
Xcode not compiling any project? 'clang failed with exit code 255'
Python - round up to the nearest ten [duplicate]
How can I use the string value of a C# enum value in a case statement?
Send a ping to each IP on a subnet
How to get the last part of a string?