Fix the sample config location for the ip_range_whitelist setting. (#8954)

Move it from the federation section to the server section to match ip_range_blacklist.
author: Patrick Cloke <clokep@users.noreply.github.com> 2020-12-16 14:40:47 -0500
committer: GitHub <noreply@github.com> 2020-12-16 14:40:47 -0500
commit: 44b7d4c6d6d5e8d78bd0154b407defea4a35aebd (patch)
tree: ca509f18939ca5b87f93d17e7a4372fdd3dd7d20 /synapse/config/server.py
parent: Convert internal pusher dicts to attrs classes. (#8940) (diff)
download: synapse-44b7d4c6d6d5e8d78bd0154b407defea4a35aebd.tar.xz
1 files changed, 12 insertions, 0 deletions
diff --git a/synapse/config/server.py b/synapse/config/server.py
index f3815e5add..7242a4aa8e 100644
--- a/synapse/config/server.py
+++ b/synapse/config/server.py
@@ -832,6 +832,18 @@ class ServerConfig(Config):
         #ip_range_blacklist:
 %(ip_range_blacklist)s
 
+        # List of IP address CIDR ranges that should be allowed for federation,
+        # identity servers, push servers, and for checking key validity for
+        # third-party invite events. This is useful for specifying exceptions to
+        # wide-ranging blacklisted target IP ranges - e.g. for communication with
+        # a push server only visible in your network.
+        #
+        # This whitelist overrides ip_range_blacklist and defaults to an empty
+        # list.
+        #
+        #ip_range_whitelist:
+        #   - '192.168.1.1'
+
         # List of ports that Synapse should listen on, their purpose and their
         # configuration.
         #
author	Patrick Cloke <clokep@users.noreply.github.com>	2020-12-16 14:40:47 -0500
committer	GitHub <noreply@github.com>	2020-12-16 14:40:47 -0500
commit	44b7d4c6d6d5e8d78bd0154b407defea4a35aebd (patch)
tree	ca509f18939ca5b87f93d17e7a4372fdd3dd7d20 /synapse/config/server.py
parent	Convert internal pusher dicts to attrs classes. (#8940) (diff)
download	synapse-44b7d4c6d6d5e8d78bd0154b407defea4a35aebd.tar.xz