How to disable direct access to a web site by ip address

Blocking direct access to a website via IP address is a common security and management practice that can be achieved through multiple approaches. Below, I outline several commonly used methods:

1. Web Server Configuration

Example: Using Apache Server

In Apache servers, you can modify the configuration file (typically .htaccess or httpd.conf) to block direct access via IP address. The following is a configuration example:

apache
<VirtualHost *:80>
    ServerName www.example.com
    ServerAlias example.com
    DocumentRoot /var/www/html

    # Block direct access via IP address
    <If "%{HTTP_HOST} == '192.168.1.1'">
        Redirect 403 /
    </If>
</VirtualHost>

In this example, if attempting to access via IP 192.168.1.1, the server will return a 403 Forbidden error.

Example: Using Nginx Server

For Nginx, you can use the server block in the configuration file:

nginx
server {
    listen 80;
    server_name 192.168.1.1;  # Server IP

    return 444;  # Close the connection
}

This will terminate any request attempting direct access via IP.

2. Firewall Rules

You can set up firewall rules at the server level to block access via specific IP addresses, which typically involves blocking HTTP or HTTPS requests from that IP.

Example: Using iptables

bash
iptables -A INPUT -d 192.168.1.1 -p tcp --dport 80 -j DROP
iptables -A INPUT -d 192.168.1.1 -p tcp --dport 443 -j DROP

These commands will drop all incoming packets destined for the server IP address 192.168.1.1 on ports 80 and 443.

3. Content Delivery Network (CDN) Configuration

If using a CDN such as Cloudflare, you can configure page rules to block access requests made directly via IP address. This is typically done in the CDN's management interface.

Conclusion

Blocking direct access to a website via IP address is a critical security measure that can effectively prevent common attacks and unauthorized access. Based on the specific server environment and requirements, you can select the appropriate method to implement. In practice, it is essential to consider the maintenance and updates of rules to ensure the effectiveness of security policies.