nwaf_ip_wl ipv6 address not working

gnusys

Member
I am trying to whitelist an ipv6 address

2020/10/17 09:23:01 [error] 12087#12087: *34 Nemesida WAF: the request 926fc65df99470e93000a6b8b938e1fd blocked by rule ID 1 in zone URL, client: 2405:201:f004:f068:c3b2:59a1:97ce:5746, server: www.autom8n.net, request: "GET /nwaftest HTTP/1.1", host: "autom8n.net"

I tried to whitelist the ipv6 using

nwaf_ip_wl 2405:201:f004:f068:c3b2:59a1:97ce:5746;
nginx -s reload

The IPv6 address is not whitelisted and I am blocked again from the same IP

The docs/examples all mention ipv4 only and ipv6 whitelisting is not implemented?
 

gnusys

Member
Hi,

There is no error, just that the nwaf_ip_wl does not work if an ipv6 address is used



2020/10/19 10:55:44 [error] 23243#23243: *980 Nemesida WAF: the request 2d6617ea9eff5de5cf2d72e590749690 blocked by rule ID 1 in zone URL, client: 2405:201:f004:f067:d8be:2b01:
efd2:cd0d, server: www.autom8n.net, request: "GET /nwaftest HTTP/1.1", host: "www.autom8n.net"
2020/10/19 10:56:02 [error] 23243#23243: *982 Nemesida WAF: the request 75af2b51b7514174e625c96f0c02e951 blocked by rule ID 1 in zone URL, client: 35.205.96.26, server: www.aut
om8n.net, request: "GET /nwaftest HTTP/1.1", host: "www.autom8n.net"
2020/10/19 10:56:35 [notice] 23404#23404: signal process started


of the above two IP address being blocked, I have whitelisted both IP's

nwaf_ip_wl 2405:201:f004:f067:d8be:2b01:efd2:cd0d;
nwaf_ip_wl 35.205.96.26;


and now the IPv4 does not get blocked again, but the IPv6 address still throws the blocked message implying that nwaf_ip_wl does not work with ipv6 address, But the blocking works just fine with ipv4 and ipv6, just whitelisting doesn't work with ipv6!
 
Top