restricted-webinterface.xml (1429B)
1 <!-- This is an example of an XR configuration that limits the access 2 to the web interface to one address. --> 3 4 <?xml version="1.0" encoding="UTF-8"> 5 6 <configuration> 7 <system> 8 <uselogger>false</uselogger> 9 <logdir>/tmp</logdir> 10 </system> 11 12 <service> 13 <!-- This is the main service that XR is responsible for. 14 The local web interface runs on port 11.001 but is accessible 15 only from localhost (127.0.0.1). The sample service runs on 16 port 11.000 and is accessible from wherever you like. --> 17 <name>web</name> 18 <server> 19 <type>tcp</type> 20 <address>0:11000</address> 21 <webinterface>127.0.0.1:11001</webinterface> 22 <verbose>yes</verbose> 23 </server> 24 25 <backend> 26 <address>server1:8000</address> 27 </backend> 28 </service> 29 30 <service> 31 <!-- Here's a forwarder that runs on port 11.002 and only accepts 32 traffic from IP address 10.50.45.189. The calls are 33 dispatched to localhost:11.001, so that this way, the web 34 interface is only accessible via: 35 a. port 11.001 from localhost, or 36 b. port 11.002 from 10.50.45.189 --> 37 <name>webinterface</name> 38 <server> 39 <type>tcp</type> 40 <address>0:11002</address> 41 <acl> 42 <allowfrom>10.50.45.189</allowfrom> 43 </acl> 44 </server> 45 <backend> 46 <address>localhost:11001</address> 47 </backend> 48 </service> 49 50 </configuration>