Securing ES With Apache


#1

Hi all,

I've been serving up ES instances on my local network using Apache. For testing, I need to expose one of the instances to the Internet, but I'm not the best with Apache. Is anyone able to offer advice on how to achieve the below configuration by using the Mod Rewrite (RewriteEngine, RewriteCond, RewriteRule) in Apache?

I already forward my ES deployment through a proxy (IE: somesite.com/es/), I can restrict this to a whitelisted set of IPs easy enough.

I want to restrict the following HTTP protocols:
Disable: PUT | DELETE | TRACE requests from all sources
Restrict: POST to "somesite.com/es/_search" requests only from all sources
Allow: GET from whitelisted IPs (don't really need help on this one)

Sorry if this is the wrong place to ask, but figured someone here may know!

Thanks in advance!


(system) #2

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.