1
Web Proxy Filtering and Caching / [SOLVED] HAProxy IP Based ACL
« on: May 18, 2020, 08:28:03 am »
I recently switched to OPNsense, and I for the most part have everything operating smoothly. I am running into issues with HAProxy with regards to limiting what passes through.
I have about 40ish services I have routed through HAproxy and thus far is operating ok. what I would like to do is limit access to a few of them from only the local clients.
I noticed under conditions there is a `Source IP matches specified IP` which when I configure the rule and put it in the backend rules I could get it to function, but I have 100's of IPs to add which is not a viable option. is it possible to add IP ranges, or subnets?
The other option I tried is `Source IP is Local` but that rule didn't seem to function, I was able to access the server from a number of outside IP's.
does anyone have experience with this type of setup or have any suggestions?
Thanks,
I have about 40ish services I have routed through HAproxy and thus far is operating ok. what I would like to do is limit access to a few of them from only the local clients.
I noticed under conditions there is a `Source IP matches specified IP` which when I configure the rule and put it in the backend rules I could get it to function, but I have 100's of IPs to add which is not a viable option. is it possible to add IP ranges, or subnets?
The other option I tried is `Source IP is Local` but that rule didn't seem to function, I was able to access the server from a number of outside IP's.
does anyone have experience with this type of setup or have any suggestions?
Thanks,