block ip/subnet at socket lvl

Chris caldcv at gmail.com
Fri Sep 9 21:47:14 UTC 2011


You're making it too complicated and just stick with iptables

On Fri, Sep 9, 2011 at 5:02 PM, Alfredo Palhares <masterkorp at gmail.com> wrote:
> Hello,
>
> I think that out of nginx scope.
>
> On 7 Sep 2011 14:42, "arleybls" <nginx-forum at nginx.us> wrote:
>> Currently Nginx can block IP on application level and thus send a 403
>> forbidden message back to the client.
>>
>> I wonder if there's a way to block any request at the socket level,
>> preferably not even sending a FIN message to the client but simply
>> dropping the packet. Right now i'm using iptables but i'm really looking
>> to have such feature on nginx itself, and if not supported right on
>> current build, how could I have a hook to the socket and control it on a
>> home made server module/handler?
>>
>> Cheers,
>> __Jr
>>
>> Posted at Nginx Forum:
>> http://forum.nginx.org/read.php?2,214948,214948#msg-214948
>>
>> _______________________________________________
>> nginx mailing list
>> nginx at nginx.org
>> http://mailman.nginx.org/mailman/listinfo/nginx
>
> _______________________________________________
> nginx mailing list
> nginx at nginx.org
> http://mailman.nginx.org/mailman/listinfo/nginx
>



-- 
--C

"The dumber people think you are, the more surprised they're going to
be when you kill them." - Sir William Clayton



More information about the nginx mailing list