How to block several thousands of IP ranges?

[bcadej]

I would like to block ranges of IP addresses access to my site using IP Address Deny Manager in cPanel. I have several thousands of IP ranges such as 41.78.84.0/22 arranged in .zone files. Is there an easy way to copy these several thousands of IP ranges to my sever to block IPs? I also have full access to server, so is there another way to copy these IPs to server?


Thanks for help.


Bostjan

 

[cPanelMichael]

Hello

I suggest blocking the IP addresses in your firewall using a firewall management utility such as CSF:

http://configserver.com

Thank you.

 

[bcadej]

I have CSF. To where do I copy these files in CSF setup?

But will this setup in CSF block access to the whole server (and all services, SHH, email, FTP, web, ...) or just one site?

 

[Infopro]

You might want to be careful here as blocking thousands of IPs without knowing much about what you're doing can be problematic.
The ConfigServer Firewall settings page has lots of great tools and options, you should spend some time going over them and reading the explanations and warnings.

See attachment:

 

[keat63]

CSF will block access to the whole server,.
You can add IP's to CSF via the "Firewall Deny IP's" button.

However if you have thousands of IP's, then i think you have to do this via a hotlist of some sort, as adding them to the Firewall deny List, could cause problems.

I guess if you're adding class C's, then this list could be compacted down to a handfull, in which case, this would work.

How many people should have access to ftp, ssh, cpanel etc, as you could block everyone in the whole universe except a small handfull, in WHM >> HOST ACCESS CONTROL.