How To Secure Apache Proxy Server (mod_proxy)

Q. I’ve proxy (mod_proxy) enabled for Apache under Debian Linux 4.0 server. I’d like to use this to improve performance, but I don’t want an open proxy that can be used by anyone on the Internets? How do I secure my proxy as limiting access is essential as I’m using a forward proxy?

A. You can easily restrict proxy access to single domain, IP or subnet.

Advertisement

Forward proxy example

You can control who can access your proxy via the <Proxy> control block. Use configuration as follows to allow access from your-domain.com only:

<Proxy *>
   Order deny,allow
   Deny from all
   Allow from your-domain.com
</Proxy>

OR allow access from 10.1.5 only

<Proxy *>
   Order deny,allow
   Deny from all
   Allow from 10.1.5
</Proxy>

Further readings:

🥺 Was this helpful? Please add a comment to show your appreciation or feedback.

nixCrat Tux Pixel Penguin
Hi! 🤠
I'm Vivek Gite, and I write about Linux, macOS, Unix, IT, programming, infosec, and open source. Subscribe to my RSS feed or email newsletter for updates.

1 comment… add one
  • Milan Jun 4, 2008 @ 8:03

    I want to how to build new kenrel through complete process

Leave a Reply

Your email address will not be published. Required fields are marked *

Use HTML <pre>...</pre> for code samples. Your comment will appear only after approval by the site admin.