Question

我想扩展我的〜$ _SERVER ['REMOTE_ADDR'〜检查的IP范围。以下工作仅允许10.0.4。*子网访问该站点：

$chk = "10.0.4.";
if( substr($_SERVER['REMOTE_ADDR'],0,strlen($chk)) !== $chk)
    $wgGroupPermissions['*']['read'] = false;

当我修改$chk字符串以将网站打开到我的整个本地网络时，我最终将网站打开到整个世界。

$chk = "10.0.";
if( substr($_SERVER['REMOTE_ADDR'],0,strlen($chk)) !== $chk)
    $wgGroupPermissions['*']['read'] = false;

我只希望我的本地子网10.0 ..具有对该站点的读取权限。我该怎么做？

Answer 1

使用掩码是一种比分割字符串更好的方法：

function testSubnet($ip, $subnet, $mask) {
    $ip = ip2long($ip);
    $subnet = ip2long($subnet);
    $mask = ip2long($mask);
    return ($ip & $mask) == ($subnet & $mask);
}

var_dump(testSubnet('10.0.0.1', '10.0.0.0', '255.255.255.0'));
var_dump(testSubnet('10.0.0.2', '10.0.0.0', '255.255.255.0'));
var_dump(testSubnet('10.0.1.1', '10.0.0.0', '255.255.255.0'));
var_dump(testSubnet('10.0.1.1', '10.0.0.0', '255.255.0.0'));

在这种情况下：

if(testSubnet($_SERVER['REMOTE_ADDR'], '10.0.4.0', '255.255.255.0')) {
    // Anything, blablabla...
}

Answer 2

为什么你不能这样做：

$z = $_SERVER['REMOTE_ADDR'];

function check($ip, $octet = 2) {
    $allow = explode(".", "10.0.0.1");
    $ipa = explode(".", $ip);

    for($i = 0; $i < $octet; $i++) {
        $ch .= $ipa[$i];
        $ah .= $allow[$i];
    }

   return $ch == $ah;
 }

echo check($z);

其中$ octet是您要匹配的八位字节数。默认值为2.

Answer 3

您可以使用header()功能吗？试试这个。

$allowed_ip = "10.0.4";
if (!strstr($_SERVER['REMOTE_ADDR'],$allowed_ip))
   header("Location: login.php");
   // include("login.php");

/* The user will be redirected to another page or you could
always include your login.php page and just continue from there. */

$ _SERVER ['REMOTE_ADDR'字符串和更改子网

3 个答案: