Well, yes, for my apache server I use the mod_evasive plugin. A quick search on the web seems to indicate that mod_evasive isn't available for nginx (at least according to this post) but apparently there is an nginx alternative:
http://stackoverflow.com/questions/4849094/mod-evasive-for-nginx Good luck with it. Installation might seem somewhat daunting at first but if you find the right instructions it will probably be straightforward (mod_evasive was). On Wed, Dec 28, 2016, at 04:19 PM, Grant wrote: > > Fail2ban works when the attacker can be distinguished in some way (other > > than rate) from an ordinary person browsing your site. > > If these ten hosts aren't attempting a "brute force" or "dictionary" > > attack ..ie if they are doing nothing more than requesting web pages > > (at a fast rate), then fail2ban is probably not the right tool. > > > Any idea what the right tool would be? nginx doesn't seem to have > anything like that. > > - Grant ------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, SlashDot.org! http://sdm.link/slashdot _______________________________________________ Fail2ban-users mailing list Fail2ban-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/fail2ban-users
