Banning via IP range

**Sherrie** · 02-06-2004, 07:21 PM

I am trying to figure out how to ban IP ranges...not just single IP numbers..

Or how to ban an ISP addy such as "wv.rr.com"

I have tried via the IP deny manager, but it only seems to accept individual IPs.

Anyone have an idea?

Thanks

**Galen** · 02-07-2004, 12:15 AM

Just use a hypen (-) between the first and last IP in the range you want to block.

Find out the IP range of the ISP you want to block and enter it as so:

69.57.128.0-69.57.159.255

(that range is for "Everyone's Internet" out of Houston, TX. btw. Just used as an example, I haven't banned them or anything, lol).

I just put a hyphen between the start of their range (69.57.128.0) and the end of their range (69.57.159.255).

Easy. Hope that helps.

**lookout** · 02-07-2004, 12:17 AM

You can set up commands in an .htaccess file to do that.

To deny a specific domain, add to it a line like so:

deny from wv.rr.com

To deny the IP range beginning with 69.38.144:

deny from 69.38.144

Much more on the topic is available from the apache.org site. See this
section on the Allow, Deny, Order directives there.

If you're unfamiliar with .htaccess files, searching on the term in the forums should yield you some tips on making them and some of their uses.

**lookout** · 02-07-2004, 12:26 AM

Must have crossposted, Galen.

I haven't seen that method before; sounds good though. Have to try it myself one of these days.

**Galen** · 02-07-2004, 12:48 AM

Well, I've never had to use it, so I can't verify it. I can only say that's how it's SUPPOSED to work

**Sherrie** · 02-13-2004, 05:48 PM

Using a hypen (-) does not work..any other ideas?

Thanks!

**Vin DSL** · 02-13-2004, 06:23 PM

You don't want to do this with .htaccess. In fact, it would be undeniably stupid to do it that way, unless you actually dislike traffic!

There is no easy way to block ranges of IP's using .htaccess. To block a single IP you would need something like:

Code:

order allow,deny
allow from all
deny from 209.180.217.140

To block a range of IPs, you would have to enter each one manually, since you don't want to block the whole class C:

Code:

order allow,deny
allow from all
deny from 209.180.217.140
deny from 209.180.217.141
deny from 209.180.217.142
deny from 209.180.217.143
deny from 209.180.217.144
deny from 209.180.217.145
deny from 209.180.217.146

And, so on....

**Connie** · 02-13-2004, 06:38 PM

Just curious. Would blocking an address also block that address
from hotlinking.

Actually I want to block the domain not the IP Address.

I am referring to using .htaccess to do this.

**Vin DSL** · 02-13-2004, 06:46 PM

Originally posted by Sherrie
...how to ban an ISP addy such as "wv.rr.com"...

Originally posted by clssam
Actually I want to block the domain not the IP Address.

I am referring to using .htaccess to do this...

Oops! I just reread the thread. To do what you want, you need to use:

Code:

<Limit GET PUT POST>
order allow,deny
deny from wv.rr.com
allow from all
</Limit>

Don't listen to these other guys. Forget about banning whole continents, just to get rid of one problem user...

LinkBack

Thread Tools

Display

Banning via IP range

Re: Banning via IP range

Bookmarks

Bookmarks

Posting Permissions