GoFuckYourself.com - Adult Webmaster Forum

GoFuckYourself.com - Adult Webmaster Forum (https://gfy.com/index.php)
-   Fucking Around & Business Discussion (https://gfy.com/forumdisplay.php?f=26)
-   -   Banning country on root level? (https://gfy.com/showthread.php?t=790522)

Klen 12-08-2007 10:21 AM
Banning country on root level?
 
Is it possible to ban entire country ip rang on root level(for entire dedicated server)?

SmokeyTheBear 12-08-2007 10:25 AM
anything is possible if you try ..

well at least thats what they tell you in school.

so i tried to toss my teacher off the roof , but it didnt work .. those liars.

p.s. yes its possible.. well kinda.. you wont get everyone obviously but..

p.s.s. why would you want to ban an entire country ?

scottybuzz 12-08-2007 10:31 AM
one reason may be that for example he cant convert chinese traffic to save his life, so instead of them leeching bandwidth, klen simply wants to not allow them to enter.

[ScreaM] 12-08-2007 10:34 AM
There was a good site that had all the IP ranges. I don't have it coz I lost all my bookmarks.

Anyone?

rowan 12-08-2007 10:49 AM
You can ban by registrar range but they usually cover such a wide geographical area that it's impractical.

Case in point: many people ban 202.* and 210.* because they're "asian" IPs, however these ranges are also allocated to Australian and New Zealand ISPs.

Klen 12-08-2007 11:26 AM
I want to ban country Turkey beacuse hackers from there third time penetrated into my server and causing me damage(since i have tgp sites where every second of downtime/unavaibility is disaster)

rowan 12-08-2007 11:32 AM
Banning Turkish IPs won't stop hackers, they'll just find an open proxy or zombie machine from a non banned area.

Klen 12-08-2007 11:46 AM
Quote:
Originally Posted by rowan (Post 13487191)
Banning Turkish IPs won't stop hackers, they'll just find an open proxy or zombie machine from a non banned area.
Funny you replied,sloth trader is a security hole which they used to penetrate.
I know they can use proxy,but if i redirect their ip to some "Alah" site they could think i have "proper" site.

GrouchyAdmin 12-08-2007 12:00 PM
The easiest bandaid way would be to use mod_geoip and the free country database by MaxMind.

A slightly better solution would be to extract the IP ranges for this, and ban it at the server.

A much better solution would be to decide why you'd want to ban an entire country instead of finding someone who can use that traffic, and offering for a trade.

chaze 12-08-2007 12:07 PM
Yeah maxmind is your best bet, but the issue is that the ip's can get resold to anywhere in the world after a business loses them.

so scammers wait for them to drop and grab them so they can seem from a different location.

raymor 12-08-2007 12:08 PM
Doing lookups on each IP that hits your server could get VERY expensive in
terms of resource usage. Instead I would look at the actual IP ranges that
seem to be problem and block them in iptables.

GrouchyAdmin 12-08-2007 12:23 PM
Quote:
Originally Posted by raymor (Post 13487277)
Doing lookups on each IP that hits your server could get VERY expensive in
terms of resource usage. Instead I would look at the actual IP ranges that
seem to be problem and block them in iptables.
I don't think anybody's gonna ban by /32, Ray.

Well, then again... :1orglaugh :1orglaugh


All times are GMT -7. The time now is 06:56 PM.

Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2025, vBulletin Solutions, Inc.
©2000-, AI Media Network Inc123