How to redirect/block IP access to Nginx

kwkro

10/25/23, 12:24 PM

I am hosting a Website on some EC2 Instances behind an Elastic Load Balancer. The Website can be reached via the public IP of the Load Balancer. This public IP is changing frequently so I have to redirect/block it.

For redirecting any access from the public DNS of any AWS services I'm using this Virtual Host with a wildcard. This is working perfectly:

server {
    listen 443;
    server_name *.amazonaws.com;
    ssl_certificate /etc/nginx/ssl/bundle.crt;
    ssl_certificate_key /etc/nginx/ssl/cert.key;
    return 301 https://www.domain.de$request_uri;
}

I've tried the same for IP Addresses but I can't get it working.

server {
    listen 80;
    server_name *.*.*.*;
    return      444;
}

server {
        listen 80 default_server;
        server_name _;
        return      444;
    }

How can I redirect or block any access via an IP Address on my server?

319

1 + 0

nginx

web-server

amazon-web-services

amazon-elb

Score:0

Server

Tero Kilkanen

10/25/23, 4:30 PM

You need to use a default virtual host to block access directed to any non-defined virtual host.

server {
    listen 443 ssl default_server;
    ssl_certificate /path/to/certificate;
    ssl_certificate_key /path/to/key;
    return 444;
}

+ 0

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: How to redirect/block IP access to Nginx

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.