Review your favorite Linux distribution.
Go Back > Forums > Linux Forums > Linux - Security
User Name
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.


  Search this Thread
Old 07-24-2019, 12:14 PM   #16
Senior Member
Registered: Feb 2013
Location: Tucson, AZ, USA
Distribution: CentOS 7.6
Posts: 3,824

Rep: Reputation: 1294Reputation: 1294Reputation: 1294Reputation: 1294Reputation: 1294Reputation: 1294Reputation: 1294Reputation: 1294Reputation: 1294

Originally Posted by newbie14 View Post
Hi Sean,
Where should I run it via a cron job it will need to read from nginx access or error log to find which ip right?
I don't run it from cron. I just run it at the command line when I want to add an IP I've noticed in the logs as being particularly abusive. I wouldn't try to automate it. It's pretty heavy-handed.
Old 07-24-2019, 01:53 PM   #17
Senior Member
Registered: Jan 2003
Location: Illinois (Chicago area)
Distribution: CentOS, MacOS, [Open]SuSE, Raspian, Red Hat, Slackware, Solaris, Tru64
Posts: 1,507

Rep: Reputation: 167Reputation: 167
Originally Posted by newbie14 View Post
Hi rnturn,
Basically I am not centos 7 with firewalld and fail2ban enable. Is there anything I can further tweak on firewalld? Thank you.
I'm running iptables but not via firewalld -- or fail2ban -- so I'm not sure how to tweak either of those to deal with these requests. (My firewall is running Slackware using some customized iptables commands set up in a script I wrote ages ago.)

In general, I filter some incoming addresses using a command like:
# iptables --insert FORWARD --protocol tcp --source ${ADDR} --jump DROP
This could be modified to only drop packets headed to port 80 but I think the above command gives the basic idea.



Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
[nginx] stop nginx from buffering uptream hilou Linux - Software 0 11-08-2016 07:45 AM
nginx + php-fpm and nginx modules fantasygoat Linux - Server 0 06-09-2011 12:21 PM
Equivalent of NGINX proxy_intercept_errors with Apache mod_proxy samarudge Linux - Server 2 04-05-2011 11:53 PM
Is there any way to stop the kernel probing a specific USB controller? gzunk Linux - Hardware 9 11-22-2009 05:45 AM
How do I stop linux from probing for HDA and HDB? Linux - General 5 10-21-2001 04:48 PM > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 07:13 PM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration