firewalld with HUGE list of ip to drop
Karl Auer
kauer at biplane.com.au
Fri Apr 12 00:43:55 UTC 2024
On Thu, 2024-04-11 at 19:56 -0400, Jerry Geis wrote:
> It takes like 20 min to load all the rules
> There is a community that access the servers and they are all over
> the USA
OK, so a whitelist is probably not going to fly.
It may not be an option, but if you set up a VPN and give people access
that way, you can limit access to people on the VPN. That will only
work for a certain type of community :-)
You may find that changing the port numbers that your services are on
helps.
But it really is starting to sound as if you need a hardware solution.
Are the unwanted connections to authenticated systems? If they are not
to authenticated systems, on what basis are you discriminating between
desirable and undesirable connections?
Regards, K.
--
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Karl Auer (kauer at biplane.com.au, he/him)
http://www.biplane.com.au/kauer
More information about the ubuntu-users
mailing list