Hello. I want to filter some services from accessing my webs, for
example host-tracker.com and similar. For that purporse I created conf
file with really lot of “deny IP;” directives in it. Would this very
large IP deny list affect nginx performance? Also, is there a limit how
much single IPs can be blocked by nginx?
Thanks much,
Ivan
Posted at Nginx Forum:
On Mon, Oct 19, 2009 at 10:10:39AM -0400, coldplug wrote:
Hello. I want to filter some services from accessing my webs, for example host-tracker.com and similar. For that purporse I created conf file with really lot of “deny IP;” directives in it. Would this very large IP deny list affect nginx performance?
Yes.
Also, is there a limit how much single IPs can be blocked by nginx?
~2^32 on 32-bit host.
It’s better to use geo module for large number of IPs:
http://wiki.nginx.org/NginxHttpGeoModule