ip_blacklist not working
valintinr opened this issue · comments
Hello,
Installed SEnginx and configured ip_blacklist module but nothing blocked. What wrong, can you help?
$conf
ip_blacklist on;
ip_blacklist_size 10240;
ip_blacklist_timeout 3600;
ip_blacklist_log on;
ip_blacklist_mode sys;
ip_blacklist_syscmd "sudo /sbin/pfctl -t ddos -T add %V";
$log
2014/10/20 18:25:29 [error] 83966#0: 1715706 ip_blacklist: Blocked IP address: "94.243.68.13", mode: sys, while running ip_blacklist, client: 94.243.68.13, server: *.ru, request: "GET /images/el/new_4/c2fc51495709c457943273d671547ef3_XL.jpg HTTP/1.1", host: ".ru", referrer: "http://*.ru/"
$proc
www 83876 0.0 0.0 116208 7240 - S 6:16PM 0:00.05 nginx: IP blacklist manager process (nginx)
$sudoers
%www ALL = (ALL) NOPASSWD: /sbin/pfctl
www ALL = (ALL) NOPASSWD: /sbin/pfctl
$dmesg
pid 84227 (nginx), uid 80: exited on signal 11
pid 84228 (nginx), uid 80: exited on signal 11
$os
10.0-RELEASE FreeBSD 10.0-RELEASE #1: Fri Sep 19 20:32:25 EEST 2014
$senginx
nginx version: senginx/1.6.1
built by clang 3.3 (tags/RELEASE_33/final 183502) 20130610
TLS SNI support enabled
configure arguments: --prefix=/usr/local/etc/nginx --conf-path=/usr/local/etc/nginx/nginx.conf --sbin-path=/usr/local/sbin/nginx --pid-path=/var/run/nginx.pid --error-log-path=/var/log/nginx/error.log --user=www --group=www --http-client-body-temp-path=/var/tmp/nginx/client_body_temp --http-fastcgi-temp-path=/var/tmp/nginx/fastcgi_temp --http-proxy-temp-path=/var/tmp/nginx/proxy_temp --http-scgi-temp-path=/var/tmp/nginx/scgi_temp --http-uwsgi-temp-path=/var/tmp/nginx/uwsgi_temp --http-log-path=/var/log/nginx/access.log --add-module=/root/senginx/neusoft/ngx_http_neteye_security --add-module=/root/senginx/3rd-party/naxsi/naxsi_src --add-module=/root/senginx/3rd-party/nginx-upstream-fair --add-module=/root/senginx/3rd-party/headers-more-nginx-module --add-module=/root/senginx/3rd-party/ngx_http_substitutions_filter_module --add-module=/root/senginx/3rd-party/nginx_tcp_proxy_module --add-module=/root/senginx/neusoft/ngx_http_upstream_fastest --add-module=/root/senginx/neusoft/ngx_http_upstream_persistence --add-module=/root/senginx/neusoft/ngx_http_session --add-module=/root/senginx/neusoft/ngx_http_robot_mitigation --add-module=/root/senginx/neusoft/ngx_http_status_page --add-module=/root/senginx/neusoft/ngx_http_if_extend --add-module=/root/senginx/neusoft/ngx_http_cache_extend --add-module=/root/senginx/neusoft/ngx_http_cookie_poisoning --add-module=/root/senginx/neusoft/ngx_http_web_defacement --add-module=/root/senginx/neusoft/ngx_http_ip_blacklist --add-module=/root/senginx/neusoft/ngx_http_ip_behavior --add-module=/root/senginx/neusoft/ngx_http_whitelist --add-module=/root/senginx/neusoft/ngx_http_statistics --add-module=/root/senginx/3rd-party/ngx_cache_purge-1.3
Hmm,it seems that SEnginx quitted on segmentation fault. SEnginx has not been well tested on FreeBSD. So I may need some time to take care about this.
Thx, I'll wait for you reply.
BTW, if you need assist I can help (ex. FreeBSD server VDS KVM or something else) just ask if need.
Hi!
Any updates?
really busy these days ... ...
On 11/18/2014 06:15 PM, Valentin Rosavitskiy wrote:
Hi!
Any updates?—
Reply to this email directly or view it on GitHub
#31 (comment).
Thx, np, waiting for your reply.
Hi, could you switch ip blacklist to local mode to see if this problem still happens ?
Hello, any news?
Ok :(