Deny all allow only one IP through htaccess

Question

I m trying to deny all and allow only for a single IP  But  I would like to have the following htaccess working for that single IP  I m not finding a way to have both working  the deny all and allow only one  plus the following options    lt IfModule mod rewrite c gt      RewriteEngine On     RewriteBase         Removes access to the system folder by users       Additionally this will allow you to create a System php controller       previously this would not have been possible        system  can be replaced if you have renamed your system folder      RewriteCond   REQUEST URI   system       RewriteRule         index php   1  L        When your application folder isn t in the system folder      This snippet prevents user access to the application folder      Submitted by  Fabdrol      Rename  application  to your applications folder name      RewriteCond   REQUEST URI   application       RewriteRule         index php   1  L        Checks to see if the user is attempting to access a valid file       such as an image or css document  if this isn t true it sends the      request to index php     RewriteCond   REQUEST FILENAME   -f     RewriteCond   REQUEST FILENAME   -d     RewriteRule        index php   1  L   lt  IfModule gt    lt IfModule  mod rewrite c gt        If we don t have mod rewrite installed  all 404 s       can be sent to index php  and everything works as normal        Submitted by  ElliotHaughin      ErrorDocument 404  index php  lt  IfModule gt    Is there a way to make this work

User · Answer

Add the following command in  htaccess file  And place that file in your htdocs folder   Order Deny Allow Deny from all Allow from  lt your ip gt   Allow from  lt another ip gt

User · Answer

You can have more than one IP or even some other kind of allow like user  hostname      more info here https   www askapache com htaccess setenvif   SetEnvIf remote addr  123 123 123 1  allowedip 1 SetEnvIf remote addr  123 123 123 2  allowedip 1 SetEnvIf remote addr  123 123 123 3  allowedip 1 SetEnvIf remote addr  123 123 123 4  allowedip 1  Order deny allow deny from all allow from env allowedip

User · Answer

If you want to use mod rewrite for access control you can use condition like user agent  http referrer  remote addr etc   Example   RewriteCond   REMOTE ADDR             you ip address RewriteRule    -  F    Refrences    https   httpd apache org docs 2 4 rewrite access html

User · Answer

You can use the following in htaccess to allow and deny access to your site    SetEnvIf remote addr  1  2 3  4  5  allowedip 1  Order deny allow deny from all allow from env allowedip   We first set an env variable allowedip if the client ip address matches the pattern  if the pattern matches then env variable allowedip is assigned the value 1    In the next step  we use Allow deny directives to allow and deny access to the site   Order deny allow represents the order of deny and allow   deny from all this line tells the server to deny everyone  the last line  allow from env allowedip allows access to a single ip address we set the env variable for   Replace 1  2  3  4  5 with your allowed ip address   Refrences     https   httpd apache org docs 2 4 mod mod setenvif html https   httpd apache org docs 2 4 mod mod access compat html

User · Answer

I wasn t able to use the 403 method because I wanted the maintenance page and page images in a sub folder on my server  so used the following approach to redirect to a  maintenance page  for everyone but a single IP   RewriteEngine on RewriteCond   REMOTE ADDR              RewriteRule   maintenance  http   www website co uk maintenance   R 302 L    Source  Creating a holding page to hide your WordPress blog

User · Answer

This can be improved by using the directive designed for that task   ErrorDocument 403  specific page html Order Allow Deny Allow from 111 222 333 444   Where 111 222 333 444 is your static IP address   When using the  Order Allow Deny  directive the requests must match either Allow or Deny  if neither is met  the request is denied   http   httpd apache org docs 2 2 mod mod authz host html order

User · Answer

Slightly modified version of the above  including a custom page to be displayed to those who get denied access   ErrorDocument 403  specific page html order deny allow deny from all allow from 111 222 333 444      and that way those requests not coming from 111 222 333 444 will see specific page html   posting this as comment looked terrible because new lines get lost

User · Answer

order deny allow deny from all allow from  lt your ip gt

User · Answer

I know this question already has an accepted answer  but the Apache documentation says      The Allow  Deny  and Order directives  provided by mod access compat    are deprecated and will go away in a future version  You should avoid   using them  and avoid outdated tutorials recommending their use    So  a more future-proof answer would be    lt RequireAll gt      Require ip xx xx xx xx yy yy yy yy  lt  RequireAll gt    Hopefully  I ve helped prevent this page from becoming one of those  outdated tutorials

User · Answer

Improving a bit more the previous answers  a maintenance page can be shown to your users while you perform changes to the site   ErrorDocument 403  maintenance html Order Allow Deny Allow from           Where            is your IP  What Is My IP Address  For maintenance html there is a nice example here  Simple Maintenance Page

User · Answer

ErrorDocument 403  maintenance html Order Allow Deny Allow from                For me  this seems to work  Using IPv6 rather than IPv4  I don t know if this is different for some websites but for mine this works

User · Answer

Just in addition to  David Brown  s answer  if you want to block an IP  you must first allow all then block the IPs as such        lt RequireAll gt        Require all granted       Require not ip 10 0 0 0 255 0 0 0       Require not ip 172 16 0 0 12       Require not ip 192 168      lt  RequireAll gt   First line allows all Second line blocks from 10 0 0 0 to 10 255 255 255 Third line blocks from 172 16 0 0 to 172 31 255 255 Fourth line blocks from 192 168 0 0 to 192 168 255 255   You may use any of the notations mentioned above to suit you CIDR needs

[.htaccess] Deny all, allow only one IP through htaccess

Examples related to .htaccess