Article ID: 116470, created on Jul 17, 2013, last review on May 11, 2014

  • Applies to:
  • Plesk 11.0 for Linux
  • Plesk 11.5 for Linux


IP access restrictions specified in the .htaccess file do not work properly if the nginx reverse proxy server is enabled. This may cause the following outcomes:

  1. If .htaccess denies access to everyone but selected addresses, error 403 is always displayed.

  2. If .htaccess denies access only to specific IP addresses/networks, visitors from these IPs still can access the website.


Since Plesk 11.5, it is possible to customize web server settings for each domain using the Web Server Settings button (permission Hosting management should be enabled on the subscription). Among available settings are IP/network restrictions.

There is no solution for Plesk 11.0 except manually modifying the global nginx configuration file.


nginx proxies requests to Apache via the "rpaf" module so that in Apache logs, we see the real IP of a site visitor. But in fact, the connection between nginx and Apache is established using local server IP addresses, and Apache applies IP restrictions to local IP addresses.

a914db3fdc7a53ddcfd1b2db8f5a1b9c 56797cefb1efc9130f7c48a7d1db0f0c aea4cd7bfd353ad7a1341a257ad4724a 29d1e90fd304f01e6420fbe60f66f838 0a53c5a9ca65a74d37ef5c5eaeb55d7f 01bc4c8cf5b7f01f815a7ada004154a2

Email subscription for changes to this article
Save as PDF