Blocking tens of thousands of IP's

Rainer Duffner rainer at ultra-secure.de
Tue Nov 1 21:50:47 UTC 2016


> Am 01.11.2016 um 22:46 schrieb Jeff Dyke <jeff.dyke at gmail.com>:
> 
> what is your firewall?, that is the place to block subnets etc, i assume they are not random ips, they are likely from a block owned by someone??



Depends on the firewall, but our network-guys would refuse to do that (and have so in the past).
Apparently, the performance of firewalls when loaded with thousands of rules isn’t much to brag about ;-)

Additionally, they like to create their rules by hand instead of generating them (old school).

How are the IPs gathered?



More information about the nginx mailing list