New IPSET function feedback.
Posted: 30 Sep 2014, 20:38
Hi,
I started to use IPSET with CSF, really nice addition, hope in a future Chirpy creates a GUI on where to add or delete IPs on the IPSET.
POST EDITED DUE TO NEW ADVANCES!!
I have to admit, with new toys to play there will always be a chance to forget something, lol.
CSF + IPSET works great!!!
After configuring everything on the server I restarted CSF completely and CSF created a few IPSET databases for each one of the rules that were set on LFD BLOCKLIST, so, it created bl_MAXMIND, bl_TOR, bl_SPAMCOP, etc. and I add my own called BLACKIPS with over 20K IPs in there, I have my own script that block IPs that have triggered my own mod_security rules and with a cron I move those IPs from CFS.DENY to my BLACKIPS.
The load on the server before IPSET was about 2.0 average, now, with IPSET running about 20K blocked IPs the load has been in 0.42 average.
In one word, IPSET is a really nice addition to CSF, thanks Jonathan!!
I started to use IPSET with CSF, really nice addition, hope in a future Chirpy creates a GUI on where to add or delete IPs on the IPSET.
POST EDITED DUE TO NEW ADVANCES!!
I have to admit, with new toys to play there will always be a chance to forget something, lol.
CSF + IPSET works great!!!
After configuring everything on the server I restarted CSF completely and CSF created a few IPSET databases for each one of the rules that were set on LFD BLOCKLIST, so, it created bl_MAXMIND, bl_TOR, bl_SPAMCOP, etc. and I add my own called BLACKIPS with over 20K IPs in there, I have my own script that block IPs that have triggered my own mod_security rules and with a cron I move those IPs from CFS.DENY to my BLACKIPS.
The load on the server before IPSET was about 2.0 average, now, with IPSET running about 20K blocked IPs the load has been in 0.42 average.
In one word, IPSET is a really nice addition to CSF, thanks Jonathan!!
