On Tue, 18 Jul 2006 14:24:56 -0500, Michael Yep <myep@xxxxxxxxxxxxxx>
opined:
> Hello
>
> I know that the preferred way of controlling access is to use
> whitelists, but for my case I'd like to use IP blacklisting.
> Now using a script like
> #!/bin/bash
>
> if [ -f badips.txt ]
> then
> for BAD_IP in `cat badips.txt`
> do
> iptables -A INPUT -s $BAD_IP -j DROP
> done
> else
> echo "Can't read badips.txt"
> fi
>
> I have like 96 banned IPs so far. I am wondering about the possible
> performance hit on my system, and the limits of iptables.
> What if I have thousands?
>
At some point it affects performance. There are some workarounds.
What problem are you trying to solve? What causes you to block an IP?
--
Do NOT Send Email to <spam trap> Fedora@TQMcube,com
Our DNSRBL - Eliminate Spam at The Source: http://www.TQMcube.com
Don't Subsidize Criminals: http://boulderpledge.org
