Unless you can use RewriteMaps (requires httpd.conf or conf.d server config access), you'll probably be happier if you simply call the IP check from each of your 'real' pages, which can then generate a 403-Forbidden response and suppress page-content generation if the IP address check fails.

Remember that an external redirect ends the current HTTP transaction and tells the client (browser or robot) to start a new one. Because of this, and because HTTP is a 'stateless' protocol, Apache will have no 'memory' of previous requests, and cannot 'know' that a second request is related to a first request. Therefore, access control must be accomplished completely within the context of a single HTTP request, meaning you cannot use an external redirect. You can use internal URL rewriting, as available in mod_rewrite, or you can include scripts and content conditionally, but no external redirects.

Jim

thank you Jim.

my main problem is that currently all pages are .html and not .php so I can't include some snippet to check IP...

host doesn't have mod_geoip support otherwise it was piece of cake for me :)

however I do have complete geoIP binary file which has all the IPs in it and I can compare visitor's IP against it.

so what I have is geoIP db, all html pages, mod_rewrite enabled, htaccess working.. nothing beyond it..

what could be way out? I am stuck with it for the last five hours now :(

Why don't you tell your server to parse html files [google.com] for php? -- Apache does not care what you name your files...

Jim

i told this to my client before you said it but he refused it right a way because he thinks it will affect his SEO rank :)

Piffle.

Jim