How to block an IP

Coordinator · #1 11-09-2003, 08:47 PM

Hi
Does anyonw know how to block IP addresses on Apache server?

nsomnia · #2 11-11-2003, 05:31 PM

Is it apache on Linux or Windows? If its on windows you can put it in your host file but if its Linux i wouldnt know I havnt really played around with it. I would suggest googleing it.

Coordinator · #3 11-11-2003, 07:09 PM

I'm Linux

nsomnia · #4 11-11-2003, 07:29 PM

http://www.linuxsecurity.org
http://www.securityfocus.com
http://www.ipblocker.org/

also you have file /etc/httpd/conf/httpd.conf
There you should search for your domain options
something like this:

.
.
.
Allow from
Deny from
.
.
.

you have to restart your Apache after these modifications (not computer). So, you have to search for the script httpd and execute with parameter stop then with parameter start (also you can do it by once with parameter restart).

It is up to your system where is that file, but you should search in /etc/rc.d/*

One more thing, when you find that script run is like /etc/rc.d/*/httpd not just like httpd because this will probably start httpd from your "path" and nothings happen (that is case in Red Hat I don't know is it like that in other distros but it is easyer just to do right thing).

Vivek · #5 12-03-2003, 11:08 AM

I dont know form apache server but it can be easily done with cpanel.

Bluebellpeople · #6 12-24-2003, 05:18 AM

Another solution is to install a firewall on your linux server, you will have better control over it besides just blocking IP addresses to only Apache. You can protect your server in many ways.

Try "iptables" from http://www.netfilter.org/ for a start.

Vivek · #7 12-24-2003, 05:59 AM

cool.

bambi · #8 01-19-2004, 03:08 PM

it can be done easily thro. cp.

jackmaninov · #9 07-28-2004, 05:56 PM

if you have iptables already installed (usually the case for most default linux installs), just run the following from the shell, and put it in a startup script if you like:

iptables -I INPUT 1 -s IP.ADD.RES.SS -j DROP

-I INPUT 1 means to insert the rule at the top of the INPUT table (which means it will get looked at first)

-s IP.ADD.RES.SS is the source address of the packets we want to deal with

-j DROP means dump the packets into the void, and forget they ever happened.

Wojjie · #10 07-28-2004, 06:24 PM

Quote:

Originally Posted by jackmaninov

if you have iptables already installed (usually the case for most default linux installs), just run the following from the shell, and put it in a startup script if you like:

iptables -I INPUT 1 -s IP.ADD.RES.SS -j DROP

-I INPUT 1 means to insert the rule at the top of the INPUT table (which means it will get looked at first)

-s IP.ADD.RES.SS is the source address of the packets we want to deal with

-j DROP means dump the packets into the void, and forget they ever happened.

You can also do it by dropping the route, but I heard firewall is better to use :wink: (ie. iptables)