block ip/subnet at socket lvl

Chris caldcv at
Fri Sep 9 21:47:14 UTC 2011

You're making it too complicated and just stick with iptables

On Fri, Sep 9, 2011 at 5:02 PM, Alfredo Palhares <masterkorp at> wrote:
> Hello,
> I think that out of nginx scope.
> On 7 Sep 2011 14:42, "arleybls" <nginx-forum at> wrote:
>> Currently Nginx can block IP on application level and thus send a 403
>> forbidden message back to the client.
>> I wonder if there's a way to block any request at the socket level,
>> preferably not even sending a FIN message to the client but simply
>> dropping the packet. Right now i'm using iptables but i'm really looking
>> to have such feature on nginx itself, and if not supported right on
>> current build, how could I have a hook to the socket and control it on a
>> home made server module/handler?
>> Cheers,
>> __Jr
>> Posted at Nginx Forum:
>> _______________________________________________
>> nginx mailing list
>> nginx at
> _______________________________________________
> nginx mailing list
> nginx at


"The dumber people think you are, the more surprised they're going to
be when you kill them." - Sir William Clayton

More information about the nginx mailing list