ConfigServer Community Forum

Peer support forums for ConfigServer Scripts
https://mail.forum.configserver.com/

Large Deny IP List

https://mail.forum.configserver.com/viewtopic.php?t=11551

Page 1 of 1

Large Deny IP List

Posted: 17 Oct 2019, 11:41
by Rockyuk
Hi Everyone,
My Deny IP List is really starting to grow now and nearly on 1500, how high can i go with this before it starts impacting my servers performance etc?

Thanks

Rockyuk

Re: Large Deny IP List

Posted: 21 Oct 2019, 12:05
by adamreece-webbox
Ours has gone up to 6000 before without any noticeable performance hit. (Currently floating around 2800.)

IPSET is a must have though to maintain performance, so don't do this if you're on OpenVZ/Virtuozzo.

What we also do is every quarter prune all blacklisted entries at least 6 months old, as IP addresses can be reallocated to different ISPs or customers within, so what may be malicious today may not be months later.
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited