i am having a testing server i have a mode like the below code

<IfModule mod_status.c>
    # Allow server status reports generated by mod_status,
    # with the URL of http://servername/server-status
    # Uncomment and change the "192.0.2.0/24" to allow access from other hosts.

    <Location /server-status>
        SetHandler server-status
        Require local
        Require ip 192.168.0.158
                ProxyPass !
    </Location>

    # Keep track of extended status information for each request
    ExtendedStatus On

    # Determine if mod_status displays the first 63 characters of a request or
    # the last 63, assuming the request itself is greater than 63 chars.
    # Default: Off
    #SeeRequestTail On


    <IfModule mod_proxy.c>
        # Show Proxy LoadBalancer status in mod_status
        ProxyStatus On
    </IfModule>


</IfModule>

# vim: syntax=apache ts=4 sw=4 sts=4 sr noet

and in 000=default i have enabled the mod also

<VirtualHost *:80>
    TimeOut 240
        RewriteEngine On
        RewriteCond %{REQUEST_URI} !^/server-status$
        RewriteCond %{HTTPS} off
        RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}
</VirtualHost>

<VirtualHost *:443>
    TimeOut 240
        ServerAdmin webmaster@localhost
        SSLEngine On

        Include /etc/apache2/ssl/customcert.enable

        SSLHonorCipherOrder on
        SSLProtocol -ALL +TLSv1.2
        SSLCipherSuite HIGH:!EXPORT:!LOW:!MEDIUM:!RC2:!3DES:!MD5:!DSS:!SEED:!RC4:!PSK:!aNULL

       # Prevent /server-info and /server-status from being proxied
    <Location /server-info>
        SetHandler server-info
        Require local
        Require ip 192.168.0.158  
        ProxyPass !
    </Location>

    <Location /server-status>
        SetHandler server-status
        Require local
        Require ip 192.168.0.158  
        ProxyPass !
    </Location>


        # Drop the Range header when more than 5 ranges.
        # CVE-2011-3192
        SetEnvIf Range (?:,.*?){5,5} bad-range=1
        RequestHeader unset Range env=bad-range
        # We always drop Request-Range; as this is a legacy
        # dating back to MSIE3 and Netscape 2 and 3.
        #
        RequestHeader unset Request-Range

    Header edit Set-Cookie ^(.*)$ $1;Secure
    Header always set X-XSS-Protection "1; mode=block"
    Header always set x-Frame-Options "SAMEORIGIN"
    Header always set X-Content-Type-Options "nosniff"
    Header set Content-Security-Policy "script-src 'self' 'unsafe-inline' 'unsafe-eval' ; object-src 'self'"
    Header always set Strict-Transport-Security "max-age=31536000; includeSubDomains"
    SSLProtocol -ALL +TLSv1.2
    SSLCipherSUite "EECDH+ECDSA+AESGCM EECDH+aRSA+AESGCM EECDH+ECDSA+SHA384 EECDH+ECDSA+SHA256 EECDH+aRSA+SHA384 EECDH+aRSA+SHA256 EECDH EDH+aRSA !CAMELLIA !SEED !3DES !RC4 !aNULL !eNULL !LOW !MD5 !EXP !PSK !SRP !DSS"
    SSLHonorCipherOrder     on
    BrowserMatch "MSIE [2-6]" 
    nokeepalive ssl-unclean-shutdown 
    downgrade-1.0 force-response-1.0
    # MSIE 7 and newer should be able to use keepalive
    BrowserMatch "MSIE [17-9]" ssl-unclean-shutdown
    RewriteEngine On
    RewriteCond %{REQUEST_URI} !^/server-info$
    RewriteCond %{REQUEST_URI} !^/server-status$
    RewriteCond %{REQUEST_METHOD} ^(DELETE|TRACE|OPTIONS|CONNECT|HEAD)$ [NC]
    RewriteRule .* - [F]

    RewriteMap forwardURL prg:/etc/apache2/rewrite_prg.pl
    RewriteCond %{REQUEST_URI} heartbeat.jsp
    RewriteRule . - [S=2]
    RewriteCond ${forwardURL:%{REQUEST_URI}} REDIRECTURL
    RewriteRule . - [L]
    RewriteCond %{REQUEST_URI} em_mgmt
    RewriteRule . - [L]
    RewriteRule ^/(.*) http://localhost:9090/$1 [P]
    ProxyPassReverse / http://localhost:9090/

        DocumentRoot /var/www
        <Directory />
                Options FollowSymLinks
                AllowOverride None
        </Directory>
        <Directory /var/www/>
                Options FollowSymLinks MultiViews
                AllowOverride None
        Require all granted
        </Directory>

        ScriptAlias /cgi-bin/ /usr/lib/cgi-bin/
        <Directory "/usr/lib/cgi-bin">
                AllowOverride None
                Options +ExecCGI -MultiViews +SymLinksIfOwnerMatch
        Require all granted
        </Directory>
        <filesMatch ".(html|htm|js|css|png|svg)$">
        FileETag None
        <ifModule mod_headers.c>
            Header unset ETag
            Header set Cache-Control "max-age=0, no-cache, no-store, must-revalidate"
            Header set Pragma "no-cache"
        </ifModule>
    </filesMatch>
        ErrorLog /var/log/apache2/error.log
        LogLevel warn
        CustomLog /var/log/apache2/access.log combined


        # Possible values include: debug, info, notice, warn, error, crit,
        # alert, emerg.
        LogLevel warn

        CustomLog /var/log/apache2/access.log combined

    Alias /em_mgmt/static/ /var/www/em_mgmt/static/
    <Directory /var/www/em_mgmt/static/>
        Require all granted
    </Directory>

    WSGIScriptAlias / /var/www/em_mgmt/em_mgmt/wsgi.py
    <Directory /var/www/em_mgmt/em_mgmt/>
    <Files wsgi.py>
        Require all granted
    </Files>
    </Directory>
      
    ErrorDocument 404 /ems
    ErrorDocument 500 /ems
    ErrorDocument 502 /ems
    ErrorDocument 503 /ems
    ErrorDocument 504 /ems
</VirtualHost>

but still i am getting this error

[Tue Aug 13 05:47:54.733537 2024] [authz_core:error] [pid 11080] [client 192.168.0.101:23505] AH01630: client denied by server configuration: proxy:http://localhost:9090/server-info
[Tue Aug 13 05:47:56.603109 2024] [authz_core:error] [pid 11080] [client 192.168.0.101:23505] AH01630: client denied by server configuration: proxy:http://localhost:9090/server-status

i am trying to login this site which is disabled by default https://192.168.0.158/server-status