1. Please take a little time for this simple survey! Thank you for participating!
    Dismiss Notice
  2. Dear Pleskians, please read this carefully! New attachments and other rules Thank you!
    Dismiss Notice
  3. Dear Pleskians, I really hope that you will share your opinion in this Special topic for chatter about Plesk in the Clouds. Thank you!
    Dismiss Notice

[Suggestion / Request] easy IP Range blocking

Discussion in 'Plesk 9.x for Linux Suggestions and Feedback' started by MarkuzM, Dec 14, 2009.

?

Would this feature be useful to you?

Poll closed Oct 10, 2010.
  1. Yes, Range IP banning should happen, but as a last resort.

    50.0%
  2. No, I've never had to ban a range of IP's

    0 vote(s)
    0.0%
  3. I could care less

    50.0%
  1. MarkuzM

    MarkuzM Guest

    0
     
    I've had quite a few " hack attempts " on several of my domains / subdomains, and as such, i've been forced to block vast ranges of china / brazil ISP's IP ranges. While it IS possible to deny a single user from your server, it's almost impossible to deny hundreds or thousands of IP addresses easily. While i know this should be considdered a last ditch effort, i feel it is still needed.

    With the cost of commercial bandwidth, i think it would be a great idea to implement this as a single page script with a link in the " home > server " category called " Ban IP" where the user can insert a single IP address, or an IP address range.

    example page layout/design:

    Ban Single IP = [xxx.xxx.xxx.xxx]
    Ban IP Range = [xxx.xxx.xxx.xxx] - [xxx.xxx.xxx.xxx]

    Ban Length = [xxx] days

    [SUBMIT BUTTON]

    ---------------------------------

    List of Banned IP's
    -----
    check | IP Address / Range | Ban Remaining
    [ ] ...... xxx.xxx.xxx.xxx - xxx.xxx.xxx.xxx - XXX days remain
    [ ] ...... xxx.xxx.xxx.xxx - xxx.xxx.xxx.xxx - XXX days remain
    [ ] ...... xxx.xxx.xxx.xxx - xxx.xxx.xxx.xxx - XXX days remain
    [ ] ...... xxx.xxx.xxx.xxx - xxx.xxx.xxx.xxx - XXX days remain
    [X] ...... xxx.xxx.xxx.xxx - xxx.xxx.xxx.xxx - XXX days remain
    [ ] ...... xxx.xxx.xxx.xxx - xxx.xxx.xxx.xxx - XXX days remain

    Remove ban from selected IP's [SUBMIT]
    then the script adds the IP(s) to the database with expiry time, adds the IP addresses to iptables/firewall to refuse connections from these IP addresses,
    a cron entry/task scheduler entry to check the database for expiry dates, if an IP address is banned for 30 days, after 30 days, the IP can be removed from the iptables / firewall

    Just my 2¢
    Really hope it happens.
     
Loading...