Access can be denied by using HTTP basic authentication. To enable authentication, use the auth_basic directive. Users then must enter their valid username and password to get access to the website
server {
...
auth_basic "closed website";
auth_basic_user_file /etc/nginx/htpasswd;
}
You must generate that htpasswd file, as follow:
sudo htpasswd -c htpasswd ${username}
Next the prompt will ask for a new password, as soon as we done this step, a new htpasswd file will be generated with the username and encrypted password.
nginxUser:$apr1$TthgC50M$XNdndu.cVIQh6/wGQf.dV0
Filtering by IP
Nginx comes with a simple module called ngx_http_access_module to allow or deny access to IP address. You need to create a file at /etc/nginx/conf.d/blockip.conf
allow 189.212.35.22;
deny all;
Be sure you have this line in your /etc/nginx/nginx.conf file
include /etc/nginx/conf.d/*.conf;
Finally restart your nginx service
sudo service nginx restart