Is it possible to deny range of IPs on Nginx

About

Asked 23/6, 2013 at 20:26 Answered 23/6, 2013 at 20:35

Is it possible to deny range like 43.249.64.0-43.249.85.255? Or only by mask like 43.249.64.0/19 which includes up to 43.249.95.255 which makes it not good decision.

Joshi answered 23/6, 2013 at 20:26 Comment(4)

or you could use multiple ranges? – Lesotho 23/6, 2013 at 20:28

I'm really bad with networking so I can't calculate which ranges I need to add to cover one mentioned above. If you could calculate them for me, I would be more than grateful – Joshi 23/6, 2013 at 20:31

write out the octets in binary format ,e.g. 43 -> 00101011. that'll make visualizing the masks much easier. – Lesotho 23/6, 2013 at 20:32

Would that be 43.249.64.0/20, 43.249.80.0/22 and 43.249.84.0/23? – Joshi 23/6, 2013 at 20:37

You can block IP ranges using the CIDR notation. Have a look at the article 'Nginx Block And Deny IP Address OR Network Subnets'

You can use IP range calculators like this one that do the math for you. For example your range '43.249.64.0-43.249.85.255' can be expressed as:

43.249.64.0/20
43.249.80.0/22
43.249.84.0/23

Mastermind answered 23/6, 2013 at 20:35 Comment(4)

@Flyer yeah I noticed. And the numbers add up - isn't that comforting : ) – Mastermind 23/6, 2013 at 20:45

haha, I guess. thanks again. Have no clue why I haven't though of combining ranges myself. – Joshi 23/6, 2013 at 20:50

do you put a separate "deny" at the beginning of every line and a ";" at the end, or can you use one "deny", ";" pair for the whole block? – Iatric 3/3, 2018 at 1:54

@CraigHicks That's correct. Here's the access module documentation – Mastermind 3/3, 2018 at 7:37

Hot tags

Godot Unity Godot Help Programming Godot 4.X GUI GDScript 3D 2D Physics CSharp Godot 3.X VR XR Projects C++

Recommended topics

Hot tags