access_restriction.ignored_ip_ranges

Background

Defines all IP address ranges in the X-Forwarded-For header to be ignored by Funnelback when applying access restrictions. The IP address ranges are specified in CIDR notation.

Setting the key

Set this configuration key in the results page (preferred) or search package configuration.

Use the configuration key editor to add or edit the access_restriction.ignored_ip_ranges key, and set the value. This can be set to any valid List<String> value.

Default value

access_restriction.ignored_ip_ranges=10.0.0.0/8,172.16.0.0/12,192.168.0.0/16,127.0.0.0/8

Examples

A request goes through two reverse proxies the first having an IP address of 1.2.3.4. The X-Forwarded-For header that Funnelback sees will contain

client IP, 1.2.3.4

We would like to ignore the IP address 1.2.3.4, so access restrictions are applied on the client IP address, we thus set

access_restriction.ignored_ip_ranges=10.0.0.0/8,172.16.0.0/12,192.168.0.0/16,1.2.3.4/32