Mercurial > hg > nginx-site

diff xml/en/docs/http/ngx_http_access_module.xml @ 494:244500f24783

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
- Cross linked ngx_http_access_module and ngx_http_auth_basic_module, mentioned the "satisfy" directive that controls their simultaneous operation. - Made it clear that ngx_http_access_module supports IPv6.
author Ruslan Ermilov <ru@nginx.com>
date Fri, 20 Apr 2012 06:22:09 +0000
parents a4fa80755eab
children be54c443235a
line wrap: on
line diff
--- a/xml/en/docs/http/ngx_http_access_module.xml
+++ b/xml/en/docs/http/ngx_http_access_module.xml
@@ -10,7 +10,14 @@
 
 <para>
 The <literal>ngx_http_access_module</literal> module allows
-to limit access based on client IP addresses.
+to limit access to certain client IP addresses.
+</para>
+
+<para>
+Access can also be limited by
+<link doc="ngx_http_auth_basic_module.xml">password</link>.
+Simultaneous limitation of access by address and by password is controlled
+by the <link doc="ngx_http_core_module.xml" id="satisfy"/> directive.
 </para>
 
 </section>
@@ -24,6 +31,7 @@ location / {
     deny  192.168.1.1;
     allow 192.168.1.0/24;
     allow 10.1.1.0/16;
+    allow 2001:0db8::/32;
     deny  all;
 }
 </example>
@@ -31,9 +39,10 @@ location / {
 
 <para>
 The rules are checked in sequence until the first match is found.
-In this example, an access is allowed only for networks
+In this example, an access is allowed only for IPv4 networks
 <literal>10.1.1.0/16</literal> and <literal>192.168.1.0/24</literal>
-excluding the address <literal>192.168.1.1</literal>.
+excluding the address <literal>192.168.1.1</literal>,
+and for IPv6 network <literal>2001:0db8::/32</literal>.
 In case of a lot of rules, the use of the
 <link doc="ngx_http_geo_module.xml">ngx_http_geo_module</link>
 module variables is preferable.