Jump to content

How do I block visitors from certain countries?

doubledee

By doubledee
in Apache HTTP Server

Recommended Posts

doubledee Advanced Member

doubledee

Posted
  • Author
Posted

It's not a very reliable or hard to work around solution but, you could find out what ip ranges are allocated to that country and use a Deny rule to block that ip range.

 

http://httpd.apache.org/docs/2.2/howto/access.html

 

1.) For a short-term solution, how much will blocking at the .htaccess hurt the performance of my website?

 

 

2.) Any thoughts on this...  http://www.parkansky.com/china.htm

 

 

3.) One article I read said "block them at the firewall level".

 

How hard is that?

 

 

Debbie

 

trq Prolific Member

trq

Posted
Posted
1.) For a short-term solution, how much will blocking at the .htaccess hurt the performance of my website?

 

Event with a lot of ip addresses, the performance hit would be negligible.

 

2.) Any thoughts on this...  http://www.parkansky.com/china.htm

 

Not really. We run one of the largest PHP communities online and haven't had any serious issue with people from specific origins. Sounds like a bit of a beat up to me.

 

3.) One article I read said "block them at the firewall level".

 

How hard is that?

 

Not hard at all if you have a dedicated server.

doubledee Advanced Member

doubledee

Posted
  • Author
Posted

1.) For a short-term solution, how much will blocking at the .htaccess hurt the performance of my website?

 

Even with a lot of ip addresses, the performance hit would be negligible.

 

Then why would I want to do it another way?

 

 

2.) Any thoughts on this...  http://www.parkansky.com/china.htm

 

Not really. We run one of the largest PHP communities online and haven't had any serious issue with people from specific origins. Sounds like a bit of a beat up to me.

 

What do you mean?

 

It is common knowledge that a lot of traffic from places like Russia and China are people sniffing out your website looking for weaknesses...

 

 

3.) One article I read said "block them at the firewall level".

 

How hard is that?

 

Not hard at all if you have a dedicated server.

 

How would I administer the firewall and add the IP's I want to block in the firewall?

 

 

Can you please explain to me what this is doing...

<Limit GET HEAD POST>
order deny,allow
deny from 1.0.1.0/24
deny from 1.0.2.0/23
deny from 1.0.8.0/21
allow from all
</Limit>

 

I have been reading up on Apache's Order but I don't get it and the sequence things have to be in?!  :confused:

 

I get that deny from is denying those IP addresses, but what I don't understand is how having allow from all is not UN-doing the deny from statements above??

 

 

Debbie

 

doubledee Advanced Member

doubledee

Posted
  • Author
Posted

Yeah, cause there's not a lot of people in Russia or China, no real reason for anyone from there to look at your site.

/sarcasm.

 

Yeah, I have no interest or need for visitors from China, Russia, or India for my U.S.-only based country.

/serious

 

And I don't need all of the port scams and other problems that someone in those and other locations would likely be doing...

 

I don't speak or read Chinese, and I don't spend time on Chinese sites, so why would someone in China care about my site unless to cause problems?

 

It is a *legitimate* concern...

/still serious

 

Debbie

 

 

AyKay47 Member

AyKay47

Posted
Posted

It's not a very reliable or hard to work around solution but, you could find out what ip ranges are allocated to that country and use a Deny rule to block that ip range.

 

http://httpd.apache.org/docs/2.2/howto/access.html

Archived

This topic is now archived and is closed to further replies.

Go to topic listing
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.