Method to block IPs in DB with Varnish?

[Devin Acosta]

I have been testing out Varnish and simply have been impressed with what I
have seen so far. The only issue I am trying to figure out so that I can
implement it in my environment is currently we use OSSEC and have it
blocking traffic for periods of time if it notices questionable behavior.

What would be the best/easiest way for me to have OSSEC say update some
type of database (memcache/redis/mongo) and add IPs to the list for a
period of time and if the remote IP matches the IP address block the
traffic for a period of time in Varnish? I see it has quite a powerful VCL
language but not quite sure what my code would look like to accomplish this
task?

Anyone help/suggestions on this topic?

-- 

Devin Acosta
Red Hat Certified Architect, LinuxStack
602-354-1220 || devin at linuxguru.co
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://www.varnish-cache.org/lists/pipermail/varnish-misc/attachments/20170325/a64d1b7c/attachment.html>