Block IP Addresses in .htaccess behind Load Balancer

Sometimes you need to block access from certain IP addresses to your web site. It is easy to do in .htaccess file if you are running Apache. What if your server is behind a load balancer ? The code below lets you block IP addresses when your server is behind AWS load balancer.

php_value memory_limit 1024M

RewriteEngine On

RewriteCond %{HTTP:X-Forwarded-Proto} =http

RewriteRule .* https://%{HTTP:Host}%{REQUEST_URI} [L,R=permanent]

Options -MultiViews

</IfModule>

RewriteEngine On

# Redirect Trailing Slashes If Not A Folder...

RewriteCond %{REQUEST_FILENAME} !-d

RewriteRule ^(.*)/$ /$1 [L,R=301]

# Handle Front Controller...

RewriteCond %{REQUEST_FILENAME} !-d

RewriteCond %{REQUEST_FILENAME} !-f

RewriteRule ^ index.php [L]

# Handle Authorization Header

RewriteCond %{HTTP:Authorization} .

RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}]

</IfModule>

SetEnvIF X-FORWARDED-FOR "123.567.89.10" AllowIP

SetEnvIF X-FORWARDED-FOR "123.45.67.89" DenyIP

#SetEnvIF REMOTE_ADDR "1" AllowIP #Local IP

Order allow,deny

Allow from all

Deny from env=DenyIP

</Files>

php_value memory_limit 1024M <IfModule mod_rewrite.c> RewriteEngine On RewriteCond %{HTTP:X-Forwarded-Proto} =http RewriteRule .* https://%{HTTP:Host}%{REQUEST_URI} [L,R=permanent] <IfModule mod_negotiation.c> Options -MultiViews </IfModule> RewriteEngine On # Redirect Trailing Slashes If Not A Folder... RewriteCond %{REQUEST_FILENAME} !-d RewriteRule ^(.*)/$ /$1 [L,R=301] # Handle Front Controller... RewriteCond %{REQUEST_FILENAME} !-d RewriteCond %{REQUEST_FILENAME} !-f RewriteRule ^ index.php [L] # Handle Authorization Header RewriteCond %{HTTP:Authorization} . RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}] </IfModule> <Files *> SetEnvIF X-FORWARDED-FOR "123.567.89.10" AllowIP SetEnvIF X-FORWARDED-FOR "123.45.67.89" DenyIP #SetEnvIF REMOTE_ADDR "1" AllowIP #Local IP Order allow,deny Allow from all Deny from env=DenyIP </Files>

php_value memory_limit 1024M
<IfModule mod_rewrite.c>
    RewriteEngine On
    RewriteCond %{HTTP:X-Forwarded-Proto} =http
    RewriteRule .* https://%{HTTP:Host}%{REQUEST_URI} [L,R=permanent]

    <IfModule mod_negotiation.c>
        Options -MultiViews
    </IfModule>

    RewriteEngine On

    # Redirect Trailing Slashes If Not A Folder...
    RewriteCond %{REQUEST_FILENAME} !-d
    RewriteRule ^(.*)/$ /$1 [L,R=301]

    # Handle Front Controller...
    RewriteCond %{REQUEST_FILENAME} !-d
    RewriteCond %{REQUEST_FILENAME} !-f
    RewriteRule ^ index.php [L]

    # Handle Authorization Header
    RewriteCond %{HTTP:Authorization} .
    RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}]
</IfModule>

<Files *>
SetEnvIF X-FORWARDED-FOR "123.567.89.10" AllowIP
SetEnvIF X-FORWARDED-FOR "123.45.67.89" DenyIP
#SetEnvIF REMOTE_ADDR "1" AllowIP #Local IP

Order allow,deny
Allow from all
Deny from env=DenyIP
</Files>

Share this article

Install Ruby on MacOS

Byalexrusin March 8, 2024March 8, 2024

MacOS comes with already pre-installed system Ruby. However this Ruby, most likely, will be outdated for Shopify development. You don’t want to mess with the pre-installed system Ruby. What you want to do is to install another Ruby using Homebrew and set the $PATH so the Homebrew-installed Ruby takes priority over the macOS system Ruby. https://mac.install.guide/ruby/13 Share…

Share this article

System Administration

Running Node.js App with Supervisord on Homestead

Byalexrusin July 3, 2017July 14, 2017

Earlier I covered how to continuously run Node.js app with Forever. In this article I will explain how to run Node.js app with Supervisord. Since Homestead already has Supervisord installed, we will use it. First, let’s create a simple node application. Edit after.sh script in Homestead installation to contain the following code: #!/bin/sh cd /var/www…

Share this article

Laravel | System Administration

Automated Deployment of Laravel Project

Byalexrusin April 4, 2021April 4, 2021

In this article I would like to share my approach to automated deployment of a Laravel project. I have been successfully using this approach for my side projects. In this article I will share Laravel project deployment on Linux (Digital Ocean) server. In a nutshell deploying Laravel project consists of “building” it (installing composer dependencies,…

Share this article

System Administration

Run Node.js Apps with Forever on Ubuntu Server

Byalexrusin October 29, 2016October 29, 2016

PM2 is a great process manager for Node.js apps. I have been using PM2 for a while, but lately it gave up on me – it refused to start one of my Node.js apps. I tested the app and did not find any problems with it: it started up and ran ok when I was…

Share this article

System Administration

Too Many Redirects

Byalexrusin June 10, 2019June 10, 2019

Sometimes your website may be making more redirects than necessary to account for https and stripping or adding trailing slash.

Share this article

PHP MySQL Development | System Administration

Using PhpMyAdmin With Homestead

Byalexrusin June 18, 2017June 18, 2017

Laravel Homestead includes a lot of software, but unfortunately does not have PhpMyAdmin. You can always install it on nginx, but if you have it already on your host system (for example, as a part of xampp package), you can always configure it as a Nginx site. First of all, you need to edit your config.inc.php file. At…

Share this article

Similar Posts