Re: [mod-security-users] White List an IP from Rules
Brought to you by:
victorhora,
zimmerletw
From: Christian B. <ch...@jw...> - 2007-04-19 14:13:03
|
You could turn off the rule-engine on specific request-properties (as IP for example). This would need to be done BEFORE any other rules are executed (included in your config). For example SecRule REMOTE_ADDR ^1\.2\.3\.4$ nolog,phase:1,allow The alternative would be to specify "ctl:ruleEngine=Off" instead of "allow". See http://www.modsecurity.org/documentation/modsecurity-apache/2.1.0/ html-multipage/07-actions.html Regards, Chris Am 19.04.2007 um 15:32 schrieb Russ Lavoie: > I looked through the manual and I was unable to figure out how to > whitelist and IP address from *ALL* rules. > > For instance, I have a load balancing device that queries port 80 > on my > web servers, but doesn't have a User-Agent so it is alerting on that. > How would I whitelist a ruleset to ignore the IP address. > > Any help would be appreciated. > > Thanks! > > ---------------------------------------------------------------------- > --- > This SF.net email is sponsored by DB2 Express > Download DB2 Express C - the FREE version of DB2 express and take > control of your XML. No limits. Just data. Click to get it now. > http://sourceforge.net/powerbar/db2/ > _______________________________________________ > mod-security-users mailing list > mod...@li... > https://lists.sourceforge.net/lists/listinfo/mod-security-users |