<div dir="ltr"><div class="gmail_quote"><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><span class="gmail_default" style="font-size:small">I have two locations </span></blockquote><div><span class="gmail_default" style="font-size:small">/xxxxx</span></div><div><span class="gmail_default" style="font-size:small">/yyyyyy</span></div><div><span class="gmail_default" style="font-size:small"><br></span></div><div><span class="gmail_default" style="font-size:small">the public one is /yyyyy, nobody is supposed to access /xxxxx from the Internet.</span></div><div><span class="gmail_default" style="font-size:small">Inside /yyyy, I call /xxxxx, but if I do this:</span></div><div><span class="gmail_default" style="font-size:small"><br></span></div><div><span class="gmail_default" style="font-size:small">location /asrxxxx {<br>default_type  'text/html; charset=UTF-8';<br>allow 127.0.0.1;<br> deny all;<br> <br></span></div><div><span class="gmail_default" style="font-size:small">it fails with forbidden. But I am using only from another location inside the same server.</span></div><div><span class="gmail_default" style="font-size:small"><br></span></div><div><span class="gmail_default" style="font-size:small">How do I protect internal service locations and at the same time use them?</span></div><div><span class="gmail_default" style="font-size:small"><br></span></div><div> </div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><span class="gmail_default" style="font-size:small"></span><br>
</blockquote></div></div>