ifnull
5/4/2016 - 12:56 AM

NGINX IP Whitelist Facebook

NGINX IP Whitelist Facebook

whois -h whois.radb.net -- '-i origin AS32934' | grep ^route
server {
  listen 80;
  
  server_name   foobar.com  ;
  access_log   /srv/www/foobar.com/logs/access.log;
  error_log    /srv/www/foobar.com/logs/error.log;

  root  /srv/www/foobar.com/current/web;
  index index.php index.htm index.html;
  
  satisfy  any;
  allow 204.15.20.0/22;
  allow 69.63.176.0/20;
  allow 66.220.144.0/20;
  allow 66.220.144.0/21;
  allow 69.63.184.0/21;
  allow 69.63.176.0/21;
  allow 74.119.76.0/22;
  allow 69.171.255.0/24;
  allow 173.252.64.0/18;
  allow 69.171.224.0/19;
  allow 69.171.224.0/20;
  allow 103.4.96.0/22;
  allow 69.63.176.0/24;
  allow 173.252.64.0/19;
  allow 173.252.70.0/24;
  allow 31.13.64.0/18;
  allow 31.13.24.0/21;
  allow 66.220.152.0/21;
  allow 66.220.159.0/24;
  allow 69.171.239.0/24;
  allow 69.171.240.0/20;
  allow 31.13.64.0/19;
  allow 31.13.64.0/24;
  allow 31.13.65.0/24;
  allow 31.13.67.0/24;
  allow 31.13.68.0/24;
  allow 31.13.69.0/24;
  allow 31.13.70.0/24;
  allow 31.13.71.0/24;
  allow 31.13.72.0/24;
  allow 31.13.73.0/24;
  allow 31.13.74.0/24;
  allow 31.13.75.0/24;
  allow 31.13.76.0/24;
  allow 31.13.77.0/24;
  allow 31.13.96.0/19;
  allow 31.13.66.0/24;
  allow 173.252.96.0/19;
  allow 69.63.178.0/24;
  allow 31.13.78.0/24;
  allow 31.13.79.0/24;
  allow 31.13.80.0/24;
  allow 31.13.82.0/24;
  allow 31.13.83.0/24;
  allow 31.13.84.0/24;
  allow 31.13.85.0/24;
  allow 31.13.86.0/24;
  allow 31.13.87.0/24;
  allow 31.13.88.0/24;
  allow 31.13.89.0/24;
  allow 31.13.90.0/24;
  allow 31.13.91.0/24;
  allow 31.13.92.0/24;
  allow 31.13.93.0/24;
  allow 31.13.94.0/24;
  allow 31.13.95.0/24;
  allow 69.171.253.0/24;
  allow 69.63.186.0/24;
  allow 31.13.81.0/24;
  allow 179.60.192.0/22;
  allow 179.60.192.0/24;
  allow 179.60.193.0/24;
  allow 179.60.194.0/24;
  allow 179.60.195.0/24;
  allow 185.60.216.0/22;
  allow 45.64.40.0/22;
  allow 185.60.216.0/24;
  allow 185.60.217.0/24;
  allow 185.60.218.0/24;
  allow 185.60.219.0/24;
  allow 129.134.0.0/16;
  allow 157.240.0.0/16;
  allow 204.15.20.0/22;
  allow 69.63.176.0/20;
  allow 69.63.176.0/21;
  allow 69.63.184.0/21;
  allow 66.220.144.0/20;
  allow 69.63.176.0/20;
  deny   all;
  auth_basic 'Restricted';
  auth_basic_user_file /etc/htpasswd/foobar.com;

  charset utf-8;
  
  add_header Fastcgi-Cache $upstream_cache_status;

  
  include includes.d/foobar.com/*.conf;
  include wordpress.conf;

  location ~ \.php$ {
    try_files $uri =404;
    error_page 404 /index.php;

    include fastcgi_params;
    fastcgi_param SCRIPT_FILENAME $realpath_root$fastcgi_script_name;
    fastcgi_param DOCUMENT_ROOT $realpath_root;
    fastcgi_pass unix:/var/run/php-fpm-wordpress.sock;
  }
}


server {
  listen 80;
  server_name foobar.com;
  return 301 $scheme://foobar.com$request_uri;
}