Skip to content

Instantly share code, notes, and snippets.

@ifnull
Created May 4, 2016 00:56
Show Gist options
  • Save ifnull/1ac3d9a20d827972d581be6d5ade96eb to your computer and use it in GitHub Desktop.
Save ifnull/1ac3d9a20d827972d581be6d5ade96eb to your computer and use it in GitHub Desktop.
NGINX IP Whitelist Facebook
server {
listen 80;
server_name foobar.com ;
access_log /srv/www/foobar.com/logs/access.log;
error_log /srv/www/foobar.com/logs/error.log;
root /srv/www/foobar.com/current/web;
index index.php index.htm index.html;
satisfy any;
allow 204.15.20.0/22;
allow 69.63.176.0/20;
allow 66.220.144.0/20;
allow 66.220.144.0/21;
allow 69.63.184.0/21;
allow 69.63.176.0/21;
allow 74.119.76.0/22;
allow 69.171.255.0/24;
allow 173.252.64.0/18;
allow 69.171.224.0/19;
allow 69.171.224.0/20;
allow 103.4.96.0/22;
allow 69.63.176.0/24;
allow 173.252.64.0/19;
allow 173.252.70.0/24;
allow 31.13.64.0/18;
allow 31.13.24.0/21;
allow 66.220.152.0/21;
allow 66.220.159.0/24;
allow 69.171.239.0/24;
allow 69.171.240.0/20;
allow 31.13.64.0/19;
allow 31.13.64.0/24;
allow 31.13.65.0/24;
allow 31.13.67.0/24;
allow 31.13.68.0/24;
allow 31.13.69.0/24;
allow 31.13.70.0/24;
allow 31.13.71.0/24;
allow 31.13.72.0/24;
allow 31.13.73.0/24;
allow 31.13.74.0/24;
allow 31.13.75.0/24;
allow 31.13.76.0/24;
allow 31.13.77.0/24;
allow 31.13.96.0/19;
allow 31.13.66.0/24;
allow 173.252.96.0/19;
allow 69.63.178.0/24;
allow 31.13.78.0/24;
allow 31.13.79.0/24;
allow 31.13.80.0/24;
allow 31.13.82.0/24;
allow 31.13.83.0/24;
allow 31.13.84.0/24;
allow 31.13.85.0/24;
allow 31.13.86.0/24;
allow 31.13.87.0/24;
allow 31.13.88.0/24;
allow 31.13.89.0/24;
allow 31.13.90.0/24;
allow 31.13.91.0/24;
allow 31.13.92.0/24;
allow 31.13.93.0/24;
allow 31.13.94.0/24;
allow 31.13.95.0/24;
allow 69.171.253.0/24;
allow 69.63.186.0/24;
allow 31.13.81.0/24;
allow 179.60.192.0/22;
allow 179.60.192.0/24;
allow 179.60.193.0/24;
allow 179.60.194.0/24;
allow 179.60.195.0/24;
allow 185.60.216.0/22;
allow 45.64.40.0/22;
allow 185.60.216.0/24;
allow 185.60.217.0/24;
allow 185.60.218.0/24;
allow 185.60.219.0/24;
allow 129.134.0.0/16;
allow 157.240.0.0/16;
allow 204.15.20.0/22;
allow 69.63.176.0/20;
allow 69.63.176.0/21;
allow 69.63.184.0/21;
allow 66.220.144.0/20;
allow 69.63.176.0/20;
deny all;
auth_basic 'Restricted';
auth_basic_user_file /etc/htpasswd/foobar.com;
charset utf-8;
add_header Fastcgi-Cache $upstream_cache_status;
include includes.d/foobar.com/*.conf;
include wordpress.conf;
location ~ \.php$ {
try_files $uri =404;
error_page 404 /index.php;
include fastcgi_params;
fastcgi_param SCRIPT_FILENAME $realpath_root$fastcgi_script_name;
fastcgi_param DOCUMENT_ROOT $realpath_root;
fastcgi_pass unix:/var/run/php-fpm-wordpress.sock;
}
}
server {
listen 80;
server_name foobar.com;
return 301 $scheme://foobar.com$request_uri;
}
whois -h whois.radb.net -- '-i origin AS32934' | grep ^route
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment