Source IP restriction for website / paths
Please implement the ability to restrict access to specific paths on a website to defined source IP's. Usually this has been done on the webserver, but NAT'ting of the Webserver Protection breaks this feature on webservers (sees the internal IP of UTM instead of public source IP).
Website globally allowed
path /administrator only allowed to defined source IP's
Partner hosts a private company Website - should anly be accessible from Company public IP's
path / only allowed to defined source IP's
Sascha Paris commented
Only partly. The idea behind the feature is just, that you don't have to do IP filtering on the webserver(s) itself, but on the UTM's WAF ;o)
Bob Alfson commented
Sascha, doesn't the inclusion of the X-Forwarded-For field solve this problem?