Solved: "acceptFrom" option in web.conf doesn't work

yangban · ‎02-07-2019

Hi

Could you help me with "web.conf"?

I would like to accept or block users to access to web interface with IP address.

So I found "acceptFrom" option and applied to /system/local/web.conf

But when I tried to restart Splunk, I got this error: "WARNING: web interface does not seem to be available!"

splunkd log shows

02-07-2019 17:35:51.968 +0900 WARN HTTPServer - Refusing HTTP connection from 127.0.0.1 due to server ACL
02-07-2019 17:35:52.069 +0900 WARN HTTPServer - Refusing HTTP connection from 127.0.0.1 due to server ACL
02-07-2019 17:35:52.085 +0900 WARN HTTPServer - Refusing HTTP connection from "my local IP" due to server ACL

02-07-2019 17:35:52.093 +0900 WARN HTTPServer - Refusing HTTP connection from "my local IP" due to server ACL

And my web.conf settings are like this

[settings]

acceptFrom = "my local IP"

Thanks for reading this.

chrisyounger · ‎02-07-2019

What about if you do acceptFrom = 127.0.0.1,my local IP

View solution in original post

chrisyounger · ‎02-07-2019

What about if you do acceptFrom = 127.0.0.1,my local IP

yangban · ‎02-07-2019

Thank you for your answer. But i already tried and got the same result.

yangban · ‎02-07-2019

It took me a whole day to figure out, but I took out the quotation mark and it worked. And must include "127.0.0.1". Thank you so much for your help @chrisyoungerjds

"acceptFrom" option in web.conf doesn't work

splunkd log shows

02-07-2019 17:35:52.093 +0900 WARN HTTPServer - Refusing HTTP connection from "my local IP" due to server ACL

And my web.conf settings are like this

acceptFrom = "my local IP"

This Week's Community Digest - Splunk Community Happenings [9.26.22]

BSides Splunk 2022 - The Call for Papers is now Open!

Sending Metrics to Splunk Enterprise With the OpenTelemetry Collector