Where is the best place to white list wp-admin / wp-login.php to specific IPs and what syntax should we use?
It seems we’d like to do so in /var/www/[site name]/conf/nginx and drop a whitelist-admin.conf or something in there – that way our white lists are encapsulated and preserved through EE or OS updates.
However, I’m not sure the ordering of nginx includes from the /etc/nginx/sites-enabled/ would allow us to drop something in the site specific conf/nginx? – that is can we drop a file in there, have it picked up auto magically at engine restart and if so, do we add these in a location block or does it have to be in http or server, etc – and is this even the best way to handle with EasyEngine?
So in summary,
- Can we create a specific whitelist-admin.conf
- What syntax do we use if we can do #1
If we can’t do #1, where do we stick the white list and what syntax do we use to best fit in the EE way of doing things?