Web Hosting Forum | Lunarpages

Author Topic: Is faster iptables or mod_security when working with large blocklist?  (Read 616 times)

Offline Albertwu

  • Newbie
  • *
  • Posts: 5
If i regularly update an file containing approx. 100 000 IPs (and subnets?), and i won't use ipset, is it faster to block website visitor by:

1) somehow making IPtables to adopt this file while this file will be updated like hourly

2) adding file to the tmpfs (ramdrive) and setting up some mod_security rule to 403 all those whose IP match line/IP in the tmpfs based 100 000 lines file

?

If there is someone who can spend time, it would help (maybe not just me) to share on how to include regularly updated file into iptables or how to make mod security rule compare visitor IP to the localhost/URL based file. Thx

 

Share |