Block the IP of the selected country in Firewall
Firewall should be able to block the IP of the selected country. I have a lot of traffic from the IP 5.10. *. *
Rafal
shared this idea
As an alternative option, you can configure GeoIP protection using nginx GeoIP module https://docs.plesk.com/en-US/obsidian/administrator-guide/website-management/websites-and-domains/extended-website-management/plesk-for-linux-setting-up-ip-geolocation-for-a-website.80011/
Please let us know what you think about it.
--AA
-
Fadi Asbih commented
You can use the Plesk Firewall to block all traffic from this network: 5.10. *. *
1) Create a custom firewall rule and name it i.e. "Block Suspicious IPs" as described here: https://support.plesk.com/hc/en-us/articles/360000875494-How-to-block-an-IP-address-in-Plesk-Firewall
2) in the Sources add the the network in this format: 5.10.0.0/16 (s.screenshot)
3) Save and Apply the new rule
This will block all these IPs: 5.10.0.0 - 5.10.255.255, meaning it will block 65,536 IPs.
-
Anonymous
commented
+15
-
Azurel
commented
@Developer take a look in this https://www.ipdeny.com/ipblocks/
Make a List like this with a checkbox and clear list maybe daily and add selected country-ips in it. It can't be that hard and would significantly improve safety. ;)
// cn=china
firewall-cmd --permanent --ipset=blocked_country_ipv4_cn --add-entries-from-file=ipv4_cn.zone -
Azurel
commented
Is it not possible to use this?
https://docs.nginx.com/nginx/admin-guide/security-controls/controlling-access-by-geoip/I have hundreds of fail2ban banned bot ips from russian and china. I want stop any traffic from there.
-
Anonymous
commented
This feature would allow me to target my customers better, whist also making my sites more secure by blocking those countries that frequently try to hack my sites.
-
EhudZ
commented
All of these deny country tools, are REALLY EASY to build. Their code is like 200 lines, and they use free real-time updating DB of IP associated to countries.
This should be a built-in Plesk tool, and no need for a monthly payment for it. It's worth 5 USD a year, not 5 USD a month... -
wolf
commented
+1
-
Anonymous
commented
+1
-
Configbox
commented
Hello
Today we have publish our last extension : https://ext.plesk.com/packages/e1726d92-7911-40c2-9b1f-37568c579f64-deny-country
This extension isn't an firewall but act on htaccess to limit website access to wanted countries. -
SB
commented
(D)DoS Deflate Interface (paid) extension does the job of blocking country pretty well (actually only on IPv4)
-
SB
commented
Seien Sie vorsichtig, wenn Sie die USA blockieren ... nützliche Dienste von Google oder anderen Anbietern können ebenfalls blockiert werden!
-
Anonymous
commented
dann könnte man endlich China, Rußland und USA sperren.
-
Daerik commented
I heard a lot of users complaining about going to cPanel. You could achieve this using ModSec and a GeoIP database. You can even activate/deactivate rules at the subscription level for full customization for your clients and their needs. I get it. A lot of you could only "program" a WordPress site, but for those who love full customization Plesk is where it's at. Perhaps I'm just a fanboy, I don't know. Research the topic. Find a work-around. Keep having your friends/associates vote this up!
-
mydragz
commented
I recommend you use Cloudflare as one of the best option.
-
Sylvio
commented
Disapointing that Plesk didn't move forward with this since several years but don't need to move to CPanel, actually the (not free) extension "(D)DoS Deflate Interface" by admin-ahead does the job pretty well excpected that the current version only works on IPv4... they told me that they are working on an update for IPv6.
-
Anonymous
commented
I moved back to Cpanel.
-
Vojkan Cvijanovic commented
+1
-
Anonymous
commented
+1
-
Anonymous
commented
+1
-
jason
commented
since 2013! This is much needed, and can save money not using cloudflare etc.
