Re: sloooooow apache
don't know whether it is good or bad idea, but did you try mod_rewrite to rewrite url requests from non friendly IPs? Bernard On Wed, Jul 07, 1999 at 13:52 +0100, [EMAIL PROTECTED] wrote: > Any Apache geniuses have an idea about this; I want to create a strictly > limited access web server, available only to selected IP addresses. > >From the Apache documentation I understood that you could allow specific IP > addresses using the 'allow from' line. So I changed the access.conf file > from > > order allow,deny > allow from all > > to > > deny from all > allow from 141.245.104.215 > allow from 141.245.104.225 > ... > 28 more IP addresses. > > For a total of 30 allow from lines. > > Now the problem is that in the former case Apache flies but everyone who > knows the URL > can view the server and in the latter case, if you're not on the list you > don't get in but Apache > is a dog to run. It can take upwards of two minutes to load the index page! > Now even with my naive understanding of Apache this seems a tad slow. > Recommendations please, what am I doing wrong to make it run SO slow? > What is the best way to limit access to 30 non-consecutive IP addresses? > Any suggestions at all? > > Thanks. > > > > -- > Unsubscribe? mail -s unsubscribe [EMAIL PROTECTED] < /dev/null >
Re: sloooooow apache
Well, I don't know apache, but you might want to see about placing these restrictions in tcp wrappers rather than in apache - if you have tcp wrappers installed, read the man for hosts.deny and set up an http deny for all but those 30 clients. You're only moving the overhead around rather than eliminating it, but it could be that tcp wrappers deal with the overhead more efficiently. Like I said though, I don't know apache, this is just a guess Mathias
sloooooow apache
Any Apache geniuses have an idea about this; I want to create a strictly limited access web server, available only to selected IP addresses. >From the Apache documentation I understood that you could allow specific IP addresses using the 'allow from' line. So I changed the access.conf file from order allow,deny allow from all to deny from all allow from 141.245.104.215 allow from 141.245.104.225 ... 28 more IP addresses. For a total of 30 allow from lines. Now the problem is that in the former case Apache flies but everyone who knows the URL can view the server and in the latter case, if you're not on the list you don't get in but Apache is a dog to run. It can take upwards of two minutes to load the index page! Now even with my naive understanding of Apache this seems a tad slow. Recommendations please, what am I doing wrong to make it run SO slow? What is the best way to limit access to 30 non-consecutive IP addresses? Any suggestions at all? Thanks.