johnhpatton/whitelist.conf

## whitelist.conf
# whitelist.conf
# Geo maps that build a $whitelist map variable.
#
# NOTES
# * This relies on an $is_google geo map set in a separate .conf file.
# * Update $remote_addr used in the maps to a variable that holds the
#    real client IP address, or set a proxy configuration in the geo
#    map. See the documentation for guidance.
# * Using $remote_addr in geo maps is not required and is the default
#    variable used in the lookup. If setting a proxy configuration in
#    the map. It is used here as an example.


geo $remote_addr $is_approved_vendor {
    "3.7.23.42/29"          1;
    default                 $is_google; # let the $is_google value fall through
}

# whitelist private client IP addresses
geo $remote_addr $whitelist {
    "10.0.0.0/8"            1;
    "127.0.0.0/8"           1;
    "10.0.0.0/8"            1;
    "172.16.0.0/12"         1;
    "192.168.0.0/16"        1;
    default                 $is_approved_vendor;
}
	# whitelist.conf
	# Geo maps that build a $whitelist map variable.
	#
	# NOTES
	# * This relies on an $is_google geo map set in a separate .conf file.
	# * Update $remote_addr used in the maps to a variable that holds the
	# real client IP address, or set a proxy configuration in the geo
	# map. See the documentation for guidance.
	# * Using $remote_addr in geo maps is not required and is the default
	# variable used in the lookup. If setting a proxy configuration in
	# the map. It is used here as an example.


	geo $remote_addr $is_approved_vendor {
	"3.7.23.42/29" 1;
	default $is_google; # let the $is_google value fall through
	}

	# whitelist private client IP addresses
	geo $remote_addr $whitelist {
	"10.0.0.0/8" 1;
	"127.0.0.0/8" 1;
	"10.0.0.0/8" 1;
	"172.16.0.0/12" 1;
	"192.168.0.0/16" 1;
	default $is_approved_vendor;
	}