Large IP deny list

Hello. I want to filter some services from accessing my webs, for
example host-tracker.com and similar. For that purporse I created conf
file with really lot of “deny IP;” directives in it. Would this very
large IP deny list affect nginx performance? Also, is there a limit how
much single IPs can be blocked by nginx?

Thanks much,
Ivan

Posted at Nginx Forum:
http://forum.nginx.org/read.php?2,14939,14939#msg-14939

On Mon, Oct 19, 2009 at 10:10:39AM -0400, coldplug wrote:

Hello. I want to filter some services from accessing my webs, for example host-tracker.com and similar. For that purporse I created conf file with really lot of “deny IP;” directives in it. Would this very large IP deny list affect nginx performance?

Yes.

Also, is there a limit how much single IPs can be blocked by nginx?

~2^32 on 32-bit host.

It’s better to use geo module for large number of IPs:
http://wiki.nginx.org/NginxHttpGeoModule

This forum is not affiliated to the Ruby language, Ruby on Rails framework, nor any Ruby applications discussed here.

| Privacy Policy | Terms of Service | Remote Ruby Jobs