Cisco Headend System Release 2.7 Guida All'Installazione
Appendix E
Configuring the loadPIMS and BOSS Web Services
142
4035749 Rev B
Summarize the Apache Directives (Optional)
It is possible to summarize directives for individual hosts on the same network to
single directives per network.
For example, assume you have the following directives:
single directives per network.
For example, assume you have the following directives:
Allow from 147.191.126.36
Allow from 147.191.126.37
Allow from 147.191.126.38
Allow from 147.191.126.39
Allow from 24.40.12.107
Allow from 24.40.12.108
Allow from 24.40.12.52
Allow from 24.40.13.104
Allow from 24.40.13.105
Deny from 192.168.0.0/16
Deny from 64.0.0.0/8
The two Deny directives are written in CIDR format and represent any IP address
between 192.168.0.1 and 192.168.255.254 (for the former), as well as IP addresses
between 64.0.0.1 and 64.255.255.254 (for the latter).
There are a few addresses from the 147.191.126.x networks and the 24.40.x.x
networks. To summarize the addresses in the 147.191.126.x networks, assume a 24
bit subnet mask (255.255.255.0). The single directive would be:
between 192.168.0.1 and 192.168.255.254 (for the former), as well as IP addresses
between 64.0.0.1 and 64.255.255.254 (for the latter).
There are a few addresses from the 147.191.126.x networks and the 24.40.x.x
networks. To summarize the addresses in the 147.191.126.x networks, assume a 24
bit subnet mask (255.255.255.0). The single directive would be:
Allow from 147.191.126.0/24
To summarize the 24.40.x.x networks, assume a 16 bit subnet mask (255.255.0.0).
This directive would be:
This directive would be:
Allow from 24.40.0.0/16
In this example, you would only need to add the following 4 directives to represent
the same 11 directives:
the same 11 directives:
Allow from 147.191.126.0/24
Allow from 24.40.0.0/16
Deny from 192.168.0.0/16
Deny from 64.0.0.0/8
It is important to verify with your network administrator that your summarized
directives are appropriate for your network. In the proceeding example, we have
simplified the config files, but we have opened up access to the PIMS and BOSS Web
services to larger numbers of IP addresses. With the original directives, only 9 hosts
were allowed to connect:
directives are appropriate for your network. In the proceeding example, we have
simplified the config files, but we have opened up access to the PIMS and BOSS Web
services to larger numbers of IP addresses. With the original directives, only 9 hosts
were allowed to connect:
147.191.126.36