At apache side I was successfully blocked it in .htaccess:
# block proxy servers from site access# http://perishablepress.com/press/2008/04/20/how-to-block-proxy-servers-via-htaccess/
RewriteEngine on
RewriteCond %{HTTP:X-FORWARDED-FOR} ^12.34.56.78 [OR]
RewriteCond %{HTTP:X-FORWARDED-FOR} ^22.44.66.88
RewriteRule ^(.*)$ - [F]
Blocking in pound would be better, due lower load under attack. But it is
selectively blocked now.
----- Původní zpráva ----- Od: "Jaroslav Lukesh" <[email protected]>
----- Původní zpráva ----- Od: "Jari Fredriksson" <[email protected]>27.09.2012 19:25, Jaroslav Lukesh kirjoitti:Dear Sirs, I want to block some DoS attacker at pound side (pound 1.8, does not have other possibilities - tiny HW), but none of this does not work: UrlGroup..... HeadRequire.... HeadDeny REMOTE_ADDR "ipaddress" HeadDeny HTTP_X_FORWARDED_FOR "ipaddress1, ipaddress2" EndGroup How to do it successfully, please? Regards, J. LukeshDon't you have a firewall?Yes, but I need to block IP in HTTP_X_FORWARDED_FOR, not the remote address, because attacker uses proxy. I was try both, but I does not know if pound interpret this rule sucessfully.
-- To unsubscribe send an email with subject unsubscribe to [email protected]. Please contact [email protected] for questions.
