unable to forbidden access by ip
Nick Rickard
nick at nickrickard.co.uk
Sun Jun 20 15:21:35 UTC 2021
I think the problem is the order of your deny and allow statements. Nginx processes them in turn. So nginx reads the allow one okay, but then reads the subsequent one as "deny all (including 10....)". Hence xls are denied to all.
If you swap the order then it should work as intended (assuming the files exist and are in the right doc root, etc).
On 18 June 2021 15:32:51 BST, baalchina <baalchina at gmail.com> wrote:
>Hi all,
>I am using nginx as my reverse proxy, and I do not want all Excel files in
>my server to be accessed in the internet. So I add this in my nginx.conf:
>
> location ~* \.(xls|xlsx)$ {
> allow 10.0.0.0/8;
> deny all;
> }
>
>while my intranet address is 10.0.0.0/8. I found in internet, nginx return
>a 403 error, that's correct.
>
>But in my intranet, which ip in 10.0.0.0/8, nginx return a 404 error. I
>looked the error.log, it return like this:
>
>[nginx][error] open() "/etc/nginx/html/_upload/article/files/d7/c2.xlsx"
>failed (2: No such file or directory), client: 10.0.0.1, server: xxxxx
>request: "GET /_upload/article/files/d7/c2.xlsx HTTP/1.1", host: "xxx",
>referrer: "xxx"
>
>So, is there anything wrong in my config file?
>
>Thanks.
>
>
>--
>from:baalchina
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.nginx.org/pipermail/nginx/attachments/20210620/f68f4f44/attachment.htm>
More information about the nginx
mailing list