On 12 January 2021 18:11:34 CET, the...@sys-concept.com wrote: >On 1/11/21 11:32 PM, J. Roeleveld wrote: >[snip] >> If you blocked the IP in the firewall, it shouldn't show in the log. >> >> Add iptables to the webserver and block that IP. >> Personally, I would block the whole range (45.93.201.0/24), which is >either >> linked to Cyprus or Russia (according to whois) >> >> Any block in the apache-config might fail due to a bug or new >configuration. >> >> -- >> Joost > >Asus routers don't have capabilities to block external IP's (I need to >find a better router). >Blocking that IP range in apache works, all the IPs I blocked are >getting 403 error (regardless what they type) >but you might be right, apache 2.4 > SetEnvIf Remote_Addr "45\.93\.201\.104" dontlog (does not work). > >I wish they design blocking by country easier.
Asus routers do allow blocking IPs, but it might be less than ideal. I would add a firewall to your webserver and block the full ranges using that. Any bug in apaches blocking WILL leave you open to a hack. -- Joost -- Sent from my Android device with K-9 Mail. Please excuse my brevity.
