blackonsole
sysadmin.id

Block or ban ip with NGINX

23 sec read

How to block ip with NGINX

0. define block ip on nginx.conf

vim /etc/nginx/nginx.conf

http {
  geo $ban_ip {
    default 0;
    include ban_ip.conf;
  }
}

that will blocked ip by clientip on access.log, if want to block real ip behind proxy set like this:

http {
  geo $http_x_forwarded_for $ban_ip {
    default 0;
    include ban_ip.conf;
  }
}

1. define blocked ip in server {}

vim /etc/nginx/sites-enabled/blackonsole.org.conf

server {
  listen 80;
  server_name blackonsole.org;
  
  if ($ban_ip) {
    return 444;
  }
}

2. add ip in ban_ip.conf

vim /etc/nginx/ban_ip.conf

1.3.4.5 US;
4.23.4.2 CN;
3.2.3.4 whatever;

3. test and reload NGINX

nginx -t
nginx -s reload
sysadmin.id
«
»

Ubuntu 22.04 How to install NGINX HTTP3/QUIC

sysadmin.id
Apr 20, 2024 2 min read

Hide PHP-FPM Version on NGINX

Check PHP-FPM version on NGINX HTTP response $ curl -I localhost/index.php HTTP/1.1 200 OK Date: Sat, 12 Aug 2017 14:07:54 GMT Content-Type: text/html Connection:...
sysadmin.id
Aug 12, 2017 16 sec read

Hide Server Info Response on NGINX

How to hide `Server:` Response info on NGINX $ curl -I localhost HTTP/1.1 200 OK Server: nginx/1.4.6 (Ubuntu) Date: Fri, 11 Aug 2017 14:09:04...
sysadmin.id
Aug 12, 2017 26 sec read