Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

NGINX App Protect DoS - Allow List feature #5843

Open
pasmant opened this issue Jun 25, 2024 · 1 comment · May be fixed by #5824
Open

NGINX App Protect DoS - Allow List feature #5843

pasmant opened this issue Jun 25, 2024 · 1 comment · May be fixed by #5824
Assignees
@vepatel
Labels
backlog Pull requests/issues that are backlog items proposal An issue that proposes a feature request
Milestone
v3.7.0

Comments

@pasmant
Copy link
Contributor

pasmant commented Jun 25, 2024
edited by shaun-nx
Loading

Is your feature request related to a problem? Please describe.
Currently the new feature of nginx app protect dos is not implemented over NIC.
The allow list describe here: Allow List

Resolves #5824

Describe the solution you'd like
I would like to have an allow list option added to the DOS protected resource Custom Resource Definition (CRD). This allow list should enable specific IP addresses, specified with their subnet masks, to never be blocked by the DOS protection. For example, the new field allowList should hold a list of IPs with their respective masks as shown below:

DosProtectedResource yaml

....
allowList:
  - ipWithMask: "192.168.1.1/24"
  - ipWithMask: "10.244.0.1/32"

Describe alternatives you've considered
No alternatives.
@pasmant pasmant added the proposal An issue that proposes a feature request label Jun 25, 2024
@github-actions GitHub Actions
Copy link

Hi @pasmant thanks for reporting!

Be sure to check out the docs and the Contributing Guidelines while you wait for a human to take a look at this 🙂

Cheers!

@vepatel vepatel added the backlog Pull requests/issues that are backlog items label Jun 25, 2024
@shaun-nx shaun-nx added this to the v3.7.0 milestone Jun 26, 2024
@shaun-nx shaun-nx linked a pull request Jun 26, 2024 that will close this issue
Dos - Allow list #5824
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@vepatel vepatel

Labels
backlog Pull requests/issues that are backlog items proposal An issue that proposes a feature request
Projects
NGINX Ingress Controller
Status: In Review 👀
Milestone
v3.7.0
Development

Successfully merging a pull request may close this issue.

Dos - Allow list pasmant/kubernetes-ingress
3 participants
@vepatel @pasmant @shaun-nx