[ale] Ouch, dang it.
DjPfulio at jdpfu.com
DjPfulio at jdpfu.com
Thu May 29 22:23:37 EDT 2025
Ipset easily handles huge numbers of ips or subnets. My servers run older OSes, so I'm unsure how nft works with IPset.
I have one system that blocks over 130,000 subnets using ipset. It uses a single firewall rule for all those blocked subnets. Quite a few are /8 for simplicity.
On May 29, 2025 9:09:37 PM EDT, Ron via Ale <ale at ale.org> wrote:
>Jim Kinney via Ale wrote on 2025-05-29 17:11:
>
>> Add a rule to send problem IP to a different internal port that has
>> a VERY slow page load that is a redirect notice to DHS.
>
>I don't think that'll work, since:
>
>lollipopman691 via Ale wrote on 2025-05-29 15:31:
>
>> My last TWiki log has requests from about 70,000 ip addresses for
>> that one TWiki page.
>That's a *lot* of IP addresses. A virtual DDoS.
>_______________________________________________
>Ale mailing list
>Ale at ale.org
>https://mail.ale.org/mailman/listinfo/ale
>See JOBS, ANNOUNCE and SCHOOLS lists at
>http://mail.ale.org/mailman/listinfo
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mail.ale.org/pipermail/ale/attachments/20250529/898d64fc/attachment.htm>
More information about the Ale
mailing list