Results 1 to 4 of 4
  1. #1

    First Post: mod_security question on remote addresses

    If I want to have mod_security let in a whole class of IP addresses, what’s the correct syntax? Would this be correct?

    SecFilterSelective REMOTE_ADDR "^227.10.255.*$" nolog,allow

    Thanks!

  2. #2
    Join Date
    Mar 2003
    Location
    California USA
    Posts
    13,681
    never done it, but i woudl assume it would be

    SecFilterSelective REMOTE_ADDR "^227.10.255.0/24$" nolog,allow
    Steven Ciaburri | Industry's Best Server Management - Rack911.com
    Software Auditing - 400+ Vulnerabilities Found - Quote @ https://www.RACK911Labs.com
    Fully Managed Dedicated Servers (Las Vegas, New York City, & Amsterdam) (AS62710)
    FreeBSD & Linux Server Management, Security Auditing, Server Optimization, PCI Compliance

  3. #3
    Join Date
    Feb 2004
    Posts
    110
    It is banned ip ?

  4. #4
    Originally posted by dqh
    It is banned ip ?
    No, it's the IP address that mod_security allows through without checking against all of its rules.

    And thanks thelinuxguy, I'll give that a try and see if it works.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •