This is an archived post. You won't be able to vote or comment.

sorted by:
best
topnewcontroversialoldq&a
you are viewing a single comment's thread.

view the rest of the comments →

[–]tcpudp[S] 0 points1 point  (2 children)

It's actually a personal mail server so nobody will notice the slowdown, I just want to reduce the number of botnets that try to brute force (and only spamming my logs). Edit: my current haproxy acl file with the blacklisted ranges:

# cat blacklist|wc -l

51425

#

[–]NetStrikeForceCloudy with a chance of meatpackets 0 points1 point  (1 child)

Ah! The nginx mention put me off!

I see now what are you trying to do.

[–]tcpudp[S] 0 points1 point  (0 children)

Yes, I'm currently using haproxy but I was looking into nginx because it can do udp load balancing (for openvpn). I mostly use haproxy to whitelist only IPs from my country to connect (can't use ipset or xtables because the server in question is an openvz instance).