AI OnAI Off
Can't get client configuration for Full Text Search service to work
All of your examples look like they should work, we will look into this and get back to you...
Jan 17, 2011 9:25
Thanks! Some more information that might be of interest:
I have tried the configurations with readonly="false" too, but no difference.
The 10.1.74.1 IP address that shows up isn't actually the client address, I guess it's visible to the server as this address because of some router/DMZ or VM configuration. But the client's address (as reported by the client) is in the 172.17 range also included.
Jan 17, 2011 10:08
Update: We have now changed the firewall config to use the client's real IP. That didn't make any difference. I currently have this config:
<add name="dev" description="dev" ipAddress="172.17.0.0/16" allowLocal="true" />
And I get these kinds of messages in the log:
2011-01-18 11:00:17,063 [15] ERROR - No match for client IP 172.17.18.89. Access denied for access key dev.
Jan 18, 2011 11:06
There is a hotfix in the works for the search service which will include a fix for the issue causing this as well as the issue causing the escaping issue causing http://world.episerver.com/Templates/Forum/Pages/Thread.aspx?id=46912&epslanguage=en
Jan 24, 2011 13:53
Yes there is a hotfix available, but you must request it from the EPiServer support.
I think it should also be included in the R2 versions of CMS and Relate?
May 12, 2011 6:48
One way of getting around this can be to create a name in the hosts file (C:\windows\system32\drivers\etc\hosts )
10.1.1.50 Site1
and then put the site1 name in the hostheader/bindings of the site in the IIS.
Sep 15, 2011 19:57
For sites with an internal ip and external ip address we got this errormessage; No match for client IP xx.xxx.xx.xx. Access denied for access key local. Solution for Patrik worked. EPiServer version 8.1.
Apr 10, 2015 11:55
This thread is locked and should be used for reference only. Please use the Legacy add-ons forum to open new discussions.
I'm setting up Full Text Search on a different machine. In the section <episerver.search.indexingservice><clients> i have tried to configure the remote machines ranges, but all of the below render the same error message in the log:
2011-01-14 08:44:08,985 [10] ERROR - No match for client IP 10.1.74.1. Access denied for access key dev.
These are the client configs i have tried (there are two subnets needed, but the test machine as you can see accesses the server through 10.1.74.1):
<add name="dev" description="dev" ipAddress="172.17.0.0/16,10.1.74.0/24" allowLocal="true" />
<add name="dev" description="dev" ipAddress="172.17.0.0/16,10.1.0.0/16" allowLocal="true" />
<add name="dev" description="dev" ipAddress="172.17.0.0/8,10.1.0.0/8" allowLocal="true" />
<add name="dev" description="dev" ipAddress="10.1.74.1/8" allowLocal="true" />
So it seems no matter how large I make those ranges, or even if I add just the range used, it still doesn't work. And once again the classes I need to test this at a lower leve are internal so I can't see where it goes wrong.