需求:如果ip表里存在客户端访问的ip,则不让他访问。
操作:第一步,获取客户端ip
通过已下方法:
public String getIpAddr(HttpServletRequest request) {
String ip = request.getHeader("x-forwarded-for");
if(ip == null || ip.length() == 0 || "unknown".equalsIgnoreCase(ip)) {
ip = request.getHeader("Proxy-Client-IP");
}
if(ip == null || ip.length() == 0 || "unknown".equalsIgnoreCase(ip)) {
ip = request.getHeader("WL-Proxy-Client-IP");
}
if(ip == null || ip.length() == 0 || "unknown".equalsIgnoreCase(ip)) {
ip = request.getRemoteAddr();
}
return ip;
}
第二步:把获取的ip段还成数字(把每一段ip都*255,一段三个,二段两个,三段一个,四段无,然后把每段得出的值相加,变成一个数后比较),把已存库里ip也同样方 法换成数字,然后两个数字进行对比。
下面sql是模仿获取10.12.6.89来换成数字,通过 VIEW_CA_IP_RESTRICT 视图去CA_IP_RESTRICT表中查询,
SELECT * FROM VIEW_CA_IP_RESTRICT t WHERE TO_NUMBER(SUBSTR('10.12.6.89', 0, INSTR('10.12.6.89', '.') - 1) * 255 * 255 * 255 + TO_NUMBER(SUBSTR(SUBSTR('10.12.6.89', INSTR('10.12.6.89', '.', 1, 1) + 1), 0, INSTR(SUBSTR('10.12.6.89', INSTR('10.12.6.89', '.', 1, 1) + 1), '.') - 1)) * 255 * 255 + TO_NUMBER(SUBSTR(SUBSTR('10.12.6.89', INSTR('10.12.6.89', '.', 1, 2) + 1), 0, INSTR(SUBSTR('10.12.6.89', INSTR('10.12.6.89', '.', 1, 2) + 1), '.') - 1)) * 255 + TO_NUMBER(SUBSTR('10.12.6.89', INSTR('10.12.6.89', '.', 1, 3) + 1))) BETWEEN t.STARTIP AND t.ENDIP
视图代码:
CREATE OR REPLACE VIEW VIEW_CA_IP_RESTRICT AS
SELECT TO_NUMBER(SUBSTR(START_IP, 0, INSTR(START_IP, '.') - 1)) * 255 * 255 * 255 +
TO_NUMBER(SUBSTR(SUBSTR(START_IP,
INSTR(START_IP, '.', 1, 1) + 1),
0,
INSTR(SUBSTR(START_IP,
INSTR(START_IP, '.', 1, 1) + 1),
'.') - 1)) * 255 * 255 +
TO_NUMBER(SUBSTR(SUBSTR(START_IP,
INSTR(START_IP, '.', 1, 2) + 1),
0,
INSTR(SUBSTR(START_IP,
INSTR(START_IP, '.', 1, 2) + 1),
'.') - 1)) * 255 +
TO_NUMBER(SUBSTR(START_IP,
INSTR(START_IP, '.', 1, 3) + 1)) AS STARTIP,
TO_NUMBER(SUBSTR(END_IP, 0, INSTR(END_IP, '.') - 1)) * 255 * 255 * 255 +
TO_NUMBER(SUBSTR(SUBSTR(END_IP,
INSTR(END_IP, '.', 1, 1) + 1),
0,
INSTR(SUBSTR(END_IP,
INSTR(END_IP, '.', 1, 1) + 1),
'.') - 1)) * 255 * 255 +
TO_NUMBER(SUBSTR(SUBSTR(END_IP,
INSTR(END_IP, '.', 1, 2) + 1),
0,
INSTR(SUBSTR(END_IP,
INSTR(END_IP, '.', 1, 2) + 1),
'.') - 1)) * 255 +
TO_NUMBER(SUBSTR(END_IP, INSTR(END_IP, '.', 1, 3) + 1)) AS ENDIP
FROM CA_IP_RESTRICT