Skip to main content

Thread: Firewall with an enormous whitelist?

-

i run game server main game chat has been getting spammed extremely persistent attacker. appears using various proxy services bypass ip bans. we've managed slow him down in recent days blocking ip ranges in firewall (ufw), i'd implement more aggressive solution.

basically, i've obtained list of ip addresses of 40,000 users on our server in standing. wrote script identify ip ranges (starting /16--that is, 123.45.*.*) these users fall into, combining possible (so instead of listing 123.4.0.0/16 , 123.5.0.0/16 separately, script combines 2 123.4.0.0/15) create fewest possible allow rules add ufw.

however, doing this, end on 5000 rules.

don't know ufw handle this, if could, doesn't seem idea.

question is, know of way implement firewall--not ufw--that able handle enormous whitelist?

alternatively, if knows of way identify , block proxy users--using proxies violates our tos anyway--from accessing our server (it's on esoteric port--not 80 or that), preferable.

quote posted antar view post
i run game server main game chat has been getting spammed extremely persistent attacker. appears using various proxy services bypass ip bans. we've managed slow him down in recent days blocking ip ranges in firewall (ufw), i'd implement more aggressive solution.

basically, i've obtained list of ip addresses of 40,000 users on our server in standing. wrote script identify ip ranges (starting /16--that is, 123.45.*.*) these users fall into, combining possible (so instead of listing 123.4.0.0/16 , 123.5.0.0/16 separately, script combines 2 123.4.0.0/15) create fewest possible allow rules add ufw.

however, doing this, end on 5000 rules.

don't know ufw handle this, if could, doesn't seem idea.

question is, know of way implement firewall--not ufw--that able handle enormous whitelist?

alternatively, if knows of way identify , block proxy users--using proxies violates our tos anyway--from accessing our server (it's on esoteric port--not 80 or that), preferable.
for whitelisting of size recommend utilizing tcp wrappers (hosts.deny).

iptables doesn't block lists of nature, it's not it's designed for.


Forum The Ubuntu Forum Community Ubuntu Specialised Support Security [ubuntu] Firewall with an enormous whitelist?


Ubuntu

Comments

Post a Comment

Popular posts from this blog

How to set the order of FAQs instead of alphabetical

-
i have 19 faqs default showing them in alphabetical order.   i dislplay them in different order, weighting this, , how weighting work, is larger number higher priority, question id show first on list need numbered in weight field 19? hey vickituch,   as mentioned, default faq items sorted alphabetically. weighting, can modify order in faq items appear. way weighting works higher number specify, higher priority faq item have. example, if have 3 items each weight specified, priority follows:   99. faq item. 45. faq item. 7. yet faq item More discussions in Content Management and Modules adobe
Read more

Thread: Get UK Keyboard working

-
i using ubuntu desktop on lucid , keyboard changes british keys american keys, #/£, ~/| , "/@ around. in system->preferences->keyboard menu have set keyboard uk. when log via putty uk keys come out right. there other place more configuration required? /vfclistsguy actually settings should enough.. can try setxkbmap -query see current layout settings. Forum The Ubuntu Forum Community Ubuntu Official Flavours Support Desktop Environments [kubuntu] Get UK Keyboard working Ubuntu
Read more

how do I change the e-mail address for my merchant account

-
aloha   i have different primary address paypal account 1 listed merchant account in form   the different address same paypal account different e-mail address   i change responses   how do that?? hi,   you need register email address want paypal account form, current paypal email used form replaced. that, open form, go options -> collect payments. in paypal setup tab, enter new email address , click register.   please let me know if need more assistance.   thanks,   eman fu senior computer scientist adobe systems inc More discussions in Archived Spaces adobe
Read more