Banning IPs from Apache?
Chris Devers
cdevers at pobox.com
Thu Feb 5 09:11:13 EST 2004
On Thu, 5 Feb 2004, Duane Morin wrote:
> Recently I'm experiencing nasty load problems on my home web server for
> reasons I have yet to determine. But I do see that my access logs are
> full of the usual worm traffic. Can somebody point me in the right
> direction (or just give me the quick tutorial) on whether I can tell
> Linux or Apache ASAP "here's a bunch of IPs that I dont want you to
> respond to at all?" What's the optimal way of making sure that these
> hits don't kill your server (or even interfere with its usual
> operation)?
You could probably get about what you want with a [huge?] "Deny from ..."
directive in Apache's main server config, but this is probably the wrong
way to go about things: it'll be annoying to maintain (you'll probably
have to restart Apache whenever you add a new host, etc) and this does
nothing for traffic coming in that isn't directed at your web server.
As others have noted, your firewall is probably the right place for this.
--
Chris Devers
More information about the Discuss
mailing list