Versions Compared

Old Version 9

changes.mady.by.user Adam W. Dace

Saved on

compared with

New Version 10

changes.mady.by.user Adam W. Dace

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Additional content.

...

Code Block
CONFIG proxy.config.dns.nameservers STRING [2001:470:20::2] 74.82.42.42

IP-based Access Control List

To setup basic security in your Traffic Install, you'll have to configure a different file,
by default /usr/local/etc/trafficserver/ip_allow.config. If you've ever done firewall
work the theory is very similar...simply list to Traffic Server what is allowed,
followed by what is NOT allowed.

Code Block

# Allow anything on localhost (this is the default configuration based on the
# depricated CONFIG proxy.config.http.quick_filter.mask INT 0x482)
src_ip=127.0.0.1                                  action=ip_allow method=ALL
src_ip=::1                                        action=ip_allow method=ALL
# Deny everything else.
src_ip=0.0.0.0-255.255.255.255                    action=ip_deny  method=ALL
src_ip=::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff action=ip_deny  method=ALL

Start It Up!

Once the above has been completed, it's time to give it all a try.

Code Block
sudo /usr/local/bin/trafficserver start

...

P.S. Please let me know if I've missed anything. It's been a while since I've done anything but tuning
so I might've left something out.