...
Code Block |
---|
proxy_redirect off; proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; client_max_body_size 10m; client_body_buffer_size 500m; client_header_buffer_size 500m; proxy_connect_timeout 90; proxy_send_timeout 90; proxy_read_timeout 90; proxy_buffer_size 16k; proxy_buffers 32 16k; proxy_busy_buffers_size 64k; |
Restricting Access to IP Range
In the following example, we restrict access to a login page in confluence to internal ip addresses between: 192.168.1.100-255
See https://www.ipaddressguide.com/cidr for creating ip range.
Code Block |
---|
# restrict access to login to 192.168.1.100-255
location /login.action {
allow 192.168.1.100/30;
allow 192.168.1.104/29;
allow 192.168.1.112/28;
allow 192.168.1.128/25;
deny all;
proxy_pass http://192.168.1.50:8090/login.action;
} |
Customized Dockerfile
The following Dockerfile adds certbot and apache2-utils to our nginx-reverse-proxy image.
...