When I blocked IP space in the past using Nginx, it seemed to parse the request anyway. That is the blocking was very low level. The code from the OP will add to the "regular" 403s, which I create by hot link detection.I look at the 403s to insure it isn't some other bug (AKA my coding), so the IP
I don’t think it’s a dumb question at all. It’s a very astute question.
My experience of protecting a high traffic retail website from a foreign
state-sponsored DDOS was that doing IP blocking on a hardware load bakancer in
front of the nginx tier was the difference between the site bring avail
Oops, I just noticed I don’t have a Subject. Sorry about that. The firewall
that we use is really cumbersome when it comes to geo ip blocking in my opinion
so I decided to do it in nginx. I forgot to mention too that when I put the IP
address in the server that I don’t want to block I still get
>
> On Apr 12, 2019, at 10:24 PM, Software Info wrote:
>
> Any ideas on how to do this? Any help would be appreciated.
How about a subject?
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Other than CRL, any other alternative way we can do OCSP validation in the
pipeline?
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,252893,283766#msg-283766
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/ngi
Hi Frank,
Yes, I see this ticket. So does it mean that NGINX still don't support this
feature?
Any alternative way to do the same thing?
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,283763,283765#msg-283765
___
nginx mailing list
nginx@ngi
https://trac.nginx.org/nginx/ticket/1534
> On Apr 13, 2019, at 12:16 AM, itplayer wrote:
>
> Hi,
> I'm wondering that if NGINX currently(I use 1.14.1) support client
> certificate OCSP validation?
> The use case is when client try to login our web application, NGINX sit in
> front of the applica
Hi,
I'm wondering that if NGINX currently(I use 1.14.1) support client
certificate OCSP validation?
The use case is when client try to login our web application, NGINX sit in
front of the application as reverse-proxy, does NGINX can verify the client
cert to make sure the client cert doesn't revoke
