Posted by Dregond Rahl, 11-02-2010, 08:12 AM | Hi everyone,
So recently been hit by a crawler and i need to black that user's IP range, since its dynamic:
Deny: 41.233.20.162
Deny: 41.233.20.132
Deny: 41.233.21.36
Deny: 41.233.18.94
Deny: 41.233.19.3
Deny: 41.233.14.104
what would be the best way to block the IP range without blocking everyone in Egypt? Would : 41.233.0.0/24 work?
Thanks,
Dregond
|
Posted by madaboutlinux, 11-02-2010, 08:17 AM | To block 41.233.xxx.xxx, use
|
Posted by Dregond Rahl, 11-02-2010, 08:18 AM | Thanks, ill try it. Would you be able to explain a bit why you are using /16 ?
|
Posted by madaboutlinux, 11-02-2010, 08:19 AM | This should explain you in detail
http://krow.net/dict/subnet.html
|
Posted by OLM | DavidG, 11-02-2010, 08:20 AM | Hi Dregond,
If you block 41.233.0.0/24, it will only affect IPs in the range 41.233.0.*, which would not meet your needs. According to the WHOIS information from those listed IPs, they all belong to 41.233.0.0/16, which belongs to "Abba-Zone-DSL".
You could block 41.233.0.0/16, which would affect 41.233.*.*, and would block all users from that ISP.
|
Posted by Dregond Rahl, 11-03-2010, 01:27 PM | Thanks everyone for your help!
Sadly I think a bunch of people are using the crawler to sort of run a DDos attack. Des anyone know how to properly configure the Port-flood feature?
|
|
Add to Favourites
Print this Article |