Hi
My network is split into the LAN (192.168.0.0/27) and DMZ
(192.168.0.32/29). My web-server, Apache2 on Debian Etch, is located in
the DMZ zone. The ACL on the webserver allows all from the LAN network
to access and other has to authenticate. Until a few weeks ago it worked
fine, but now all has to login. In the apache2-log users from LAN used
to have the entry IP 192.168.0.1 from the firewall's NIC from the LAN
side, but now it's the NIC from the DMZ side that appear in the log and
everybody has to login.
<Directory /www/dom.dk>
DAV On
AuthType Basic
AuthBasicProvider ldap
AuthName "Home"
AuthzLDAPAuthoritative off
AuthLDAPURL ldap://ldap.dom.dk:389/ou=People,dc=dom,dc=dk
AuthLDAPBindDN "cn=apache-user,dc=dom,dc=dk"
AuthLDAPBindPassword "<password>"
require valid-user
Order deny,allow
Deny from all
Allow from 192.168.0.0/255.255.255.224
Satisfy any
</Directory>
Network:
User: 192.168.0.22 ---> {FW-LAN: 192.168.0.1/27 >FW-DMZ:
192.168.0.33/29} --> WWW: 192.168.0.34/29
--
/Lars
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
