New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
nginx geoip problem
Hi,
I want to configure my nginx to only allow access from some country.
I follow this tutorial http://www.howtoforge.com/nginx-how-to-block-visitors-by-country-with-the-geoip-module-debian-ubuntu
I use debian 6 with nginx from debian repo.
This is snippet of my /etc/nginx/nginx.conf
`
user www-data;
worker_processes 1;
error_log /var/log/nginx/error.log;
pid /var/run/nginx.pid;
events {
worker_connections 1024;
# multi_accept on;
}
http {
geoip_country /usr/share/GeoIP/GeoIP.dat;
map $geoip_country_code $allowed_country {
default no;
IT yes;
}
`
It is still not as expected, i can still access the web from other country (not IT/italia)
Any clue?
Comments
Apply the rule in your config
# e.g. set root path /var/www/html/content/usa
}
edit:
you need to add in server block...
if ($allow_visit = no) { rewrite ^ http://www.google.com.$geoip_country_code; }or in yours
if ($allowed_country = no) { rewrite ^ http://www.google.com.$geoip_country_code; }@bdtech @Shamli
Thanks, i missed that part (apply the rule in the server block). What a stupid mistake.
Thanks
@kampung baru?
Hi,
BTW, any know how to nginx load balancing using different upstream domain names.
???
From Indonesia? or baru in this Nginx stuff?
Hi, you can see my language by yourself
I'm old user of nginx, but not advanced user. Just for personal blog & small django site.
I'm old user of nginx, but not advanced user. Just for personal blog & small django site.
I'm just joking. Kampung Baru is common village name in Malaysia. ;p
we are all orang kampung here
Damn Malays and Indonesians <_<
J/k
I have a similar question, how do I configure nginx with the following conditions?
Allowed specific country (eg: ID) with geoip module and specific ip range/subnet.
Do exactly what he did, except swap IT with ID. You do need the HTTP GeoIP Module for that though.
I've been doing it a long time ago, but how to add multiple subnets outside of database geoip? I want to allow google bot ip range and some ip address outside ID.
Easiest way would be to edit the GeoIP DB itself, it's a single csv file.
Or, map those ranges to another variable, and then allow the visit to progress if $allow_visit = yes OR $your_variable = yes.
Simple stuff, just read some docs