by I was directed by my supervisor to allow only a specific IP address
and a link from another web site to be able to login to our Web site.
If a user other than with IP 167.893.2.1 logs in directly to our Web
site (https://abcdef.opqr.navy.mil), it will automatically redirect it
to the other site (https://cdef.lmnopq.navy.mil) and will now be able
to login. But the user with the IP address 167.893.2.1 can login
directly. I try to solve this by editing the httpd.conf by inserting
the following:
<VirtualHost abcdef.opqr.navy.mil>
DocumentRoot "/usr/www/abc"
<Directory "/usr/www/abc">
Options Indexes FollowSymLinks MultiViews
AllowOverride AuthConfig
Order allow,deny
Allow from 150.101.5.18
Allow from 167.893.2.1
ErrorDocument 403 https://cdef.lmnopq.navy.mil
</Directory>
The user with IP 167.893.2.1 was able login directly but the user who
try to connect using the web site with IP address of 150.101.5.18
cannot log-in because the system is looking at the original IP address
167.893.2.1) of the user not the linking web site with IP
150.101.5.18. (see the access logs).
This is the access logs:
167.893.2.1 - esmith [03/Jan/2003:11:20:36 -0500] "GET
/html/mypage.html HTTP/1.0" 200 1234 "https://cdef.lmnopq.navy.mil/"
"Mozilla/4.61
[en] (Win98; U)"
123.456.7.8 - - [07/Jan/2003:11:52:22 -0500] "GET / HTTP/1.0" 304 287"
https://cdef.lmnopq.navy.mil/livelink/livelink.exe?func=ll&objId=1234...
n=browse&sort=name" "Mozilla/4.7 [en] (Win95; U)"
Thanks for any help.
Orlando