nwaf_ip_wl ipv6 address not working

gnusys

Member
I am trying to whitelist an ipv6 address

2020/10/17 09:23:01 [error] 12087#12087: *34 Nemesida WAF: the request 926fc65df99470e93000a6b8b938e1fd blocked by rule ID 1 in zone URL, client: 2405:201:f004:f068:c3b2:59a1:97ce:5746, server: www.autom8n.net, request: "GET /nwaftest HTTP/1.1", host: "autom8n.net"

I tried to whitelist the ipv6 using

nwaf_ip_wl 2405:201:f004:f068:c3b2:59a1:97ce:5746;
nginx -s reload

The IPv6 address is not whitelisted and I am blocked again from the same IP

The docs/examples all mention ipv4 only and ipv6 whitelisting is not implemented?
 

support

Well-known member
Staff member
Hello,

please send us your error.log. What distribution do you have a problem with?
 

gnusys

Member
Hi,

There is no error, just that the nwaf_ip_wl does not work if an ipv6 address is used



2020/10/19 10:55:44 [error] 23243#23243: *980 Nemesida WAF: the request 2d6617ea9eff5de5cf2d72e590749690 blocked by rule ID 1 in zone URL, client: 2405:201:f004:f067:d8be:2b01:
efd2:cd0d, server: www.autom8n.net, request: "GET /nwaftest HTTP/1.1", host: "www.autom8n.net"
2020/10/19 10:56:02 [error] 23243#23243: *982 Nemesida WAF: the request 75af2b51b7514174e625c96f0c02e951 blocked by rule ID 1 in zone URL, client: 35.205.96.26, server: www.aut
om8n.net, request: "GET /nwaftest HTTP/1.1", host: "www.autom8n.net"
2020/10/19 10:56:35 [notice] 23404#23404: signal process started


of the above two IP address being blocked, I have whitelisted both IP's

nwaf_ip_wl 2405:201:f004:f067:d8be:2b01:efd2:cd0d;
nwaf_ip_wl 35.205.96.26;


and now the IPv4 does not get blocked again, but the IPv6 address still throws the blocked message implying that nwaf_ip_wl does not work with ipv6 address, But the blocking works just fine with ipv4 and ipv6, just whitelisting doesn't work with ipv6!
 

support

Well-known member
Staff member
Hi,

There is no error, just that the nwaf_ip_wl does not work if an ipv6 address is used



2020/10/19 10:55:44 [error] 23243#23243: *980 Nemesida WAF: the request 2d6617ea9eff5de5cf2d72e590749690 blocked by rule ID 1 in zone URL, client: 2405:201:f004:f067:d8be:2b01:
efd2:cd0d, server: www.autom8n.net, request: "GET /nwaftest HTTP/1.1", host: "www.autom8n.net"
2020/10/19 10:56:02 [error] 23243#23243: *982 Nemesida WAF: the request 75af2b51b7514174e625c96f0c02e951 blocked by rule ID 1 in zone URL, client: 35.205.96.26, server: www.aut
om8n.net, request: "GET /nwaftest HTTP/1.1", host: "www.autom8n.net"
2020/10/19 10:56:35 [notice] 23404#23404: signal process started


of the above two IP address being blocked, I have whitelisted both IP's

nwaf_ip_wl 2405:201:f004:f067:d8be:2b01:efd2:cd0d;
nwaf_ip_wl 35.205.96.26;


and now the IPv4 does not get blocked again, but the IPv6 address still throws the blocked message implying that nwaf_ip_wl does not work with ipv6 address, But the blocking works just fine with ipv4 and ipv6, just whitelisting doesn't work with ipv6!

Hello,

we added support for IPv6 in nwaf-dyn-1.x-4.3.3
 
Top