
{
    #---------------------------------------------------------------------
    # Grab ValidFromGeoIP access list property of httpd-admin
    # SSL enabled virtual hosts should only allow access from IP's in
    # this list, as well as local networks.
    #---------------------------------------------------------------------
    
    $OUT = '# Mod_maxminddb variable definition';

    my $validFromGeoIP = ${'httpd-admin'}{'ValidFromGeoIP'};
    return "#disabled\n" unless (defined $validFromGeoIP && ($modMaxminddb{'status'}||'disabled') eq 'enabled' );
    $validFromGeoIP =~ s/,/|/g;
    $OUT .= "\nSetEnvIf MM_COUNTRY_CODE ^($validFromGeoIP) AllowCountries\n";
    # prior apache 2.4  you could combine ip and env by doing  $externalSSLAccess .= ' env=AllowCountries';
    # now you should add "Require env AllowCountries" in Files, Directory or Location section
 }
