How many ips can i ban in iptables firewall?

postcd

• May 03, 2014 18:23

Hello, how i can see how much ips blocked in iptables is too much? where can i check it. Is there any hard limit or how to determine acceptable number keeping in ming that i have 6x2.2Ghz cpu and 8gb ram + basic 7k rpm disk?

• 

  iserversupport

  • May 04, 2014 08:21

  Are you using any Firewall like CSF ? With csf you can set limit for no of blocked IP's. I think a limit of 1000 blocked IP is fine

  0
• 

  cPanelMichael

  • May 05, 2014 04:33

  Hello :) This is not a limit imposed by the cPanel software. I looked up this question on a search engine and found a suitable answer rather quickly on a third-party website: [url=http://serverfault.com/questions/479549/how-many-rules-can-iptables-support]How many rules can iptables support? - Server Fault Thank you.

  0
• 

  Infopro

  • May 05, 2014 11:11

  From the CSF configuration settings page for DENY_IP_LIMIT: [QUOTE]Limit the number of IP's kept in the /etc/csf/csf.deny file. This can be important as a large number of IP addresses create a large number of iptables rules (4 times the number of IP's) which can cause problems on some systems where either the the number of iptables entries has been limited (esp VPS's) or where resources are limited. This can result in slow network performance, or, in the case of iptables entry limits, can prevent your server from booting as not all the required iptables chain settings will be correctly configured.
  

  0

Please sign in to leave a comment.