Varnish lightweight firewall, IP logging and temp ban

me at me at
Mon Nov 19 10:31:05 CET 2012


> Essentially we want a more fluid way of blocking incoming traffic for
> a time period, and the unblocking it later.  Our firewalls are more
> stringent, it is blocked or not.. not time release or what not.

fail2ban can be configured to block a specific ip if their request
reaches a certain threshold in a specific time, so this might suffice
and will be easier to implement. i don't know whether it's possible to
configure fail2ban to not block but forward the request to a different
webserver serving a static error page instead.

good luck,
 tobias florek

More information about the varnish-misc mailing list