allow IPv6/Mask

Micha Glave nginx at migmedia.de
Fri Nov 23 12:25:53 UTC 2012


Hi

I wan't to allow just the local-IPv4-Subnet. Something like this:

listen *:80;
allow 192.168.42.0/24;
deny all;

After switching to IPv6-Dual-Layer I tried this ...

listen [::]:80;
allow ::ffff:192.168.42.0/120;
deny all;


It doesn't work as expected. No one can see the page.
The following works:

listen [::]:80;
allow ::ffff:c0a8:2a00/120;
deny all;

In my opinion there should be a warning at the second. But it fails
silently.

Should I post a bug-report for this?

Micha
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.nginx.org/pipermail/nginx/attachments/20121123/51c6becf/attachment.html>


More information about the nginx mailing list