Solved

Use htaccess to block specific router names rather than IP Blocks

Posted on 2013-06-22
3
510 Views
Last Modified: 2013-06-23
My website has been under attack for a couple of weeks now. I have a dedicated server. I started by blocking their IP addresses, but they just keep changing them over and over and over. Basically I want to block the router most of the IP's resolve too:

adsl-XX-XX-XX-X.dsl.lsan03.sbcglobal.net

How do I block all ip's coming from dsl.lsan03.sbcglobal.net? What would the proper syntax be in the htaccess, or how could I add this to csf.deny?

Any help would be greatly appreciated.

-S
0
Comment
Question by:summerset
  • 2
3 Comments
 
LVL 76

Expert Comment

by:arnold
ID: 39268577
There is no syntax that you can  use to block traffic through which a packet might travel.

Your best might be to use iptables/snort to setup an IDS/IPS that will reject the requests.

There  are apache based tools as well to shield the server to some extent.
0
 

Author Comment

by:summerset
ID: 39269712
Thanks...Could you elaborate on the tools
0
 
LVL 76

Accepted Solution

by:
arnold earned 500 total points
ID: 39269920
iptables/snort can be setup as IDS/IPS system. where they will shield apache from different types of connection.

Apache also has retelimit, etc. but every measure you make has an impact since they are resource consumers on the server.
One optoin is to block the IP segments on the firewall.
Intenet Firewall IDS/IPS server_lan

The issue is that implementing different things is not cheap and the decision is up to you to see whether it is worth while.
0

Featured Post

Enabling OSINT in Activity Based Intelligence

Activity based intelligence (ABI) requires access to all available sources of data. Recorded Future allows analysts to observe structured data on the open, deep, and dark web.

Join & Write a Comment

Hi, in this article I'm going to teach you how to run your own site, and how to let people in (without IP). I'll talk about and explain each step... :) By the way, everything in this Tutorial is completely free and legal. This article is for …
If your site has a few sections that need to be secure when data is transmitted between the server and local computer, such as a /order/ section for ordering or /customer/ which contains customer data, etc it would of course be recommended to secure…
Access reports are powerful and flexible. Learn how to create a query and then a grouped report using the wizard. Modify the report design after the wizard is done to make it look better. There will be another video to explain how to put the final p…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now