Blocking IPs

Message Topic Search Topic Options Post Reply Create New Topic Printable Version Translate Topic

   How would I go about blocking an IP with the variable "Local_Addr" using your whole range method Hamish? The spam is coming from the same local IP each time.

RemAddr = Request.ServerVariables("Local_Addr")
If (RemAddr >= "x.x.x.x") and (RemAddr <= "x.x.x.x") Then 
  Response.End 
End if

This doesn't seem to work, any ideas?

Author	Message Topic Search Topic Options Post Reply Create New Topic Printable Version Translate Topic
Logistix Members Profile Send Private Message Find Members Posts Add to Buddy List Newbie Joined: 30-July-2008 Status: Offline Points: 0	Post Options Post Reply Quote Logistix Report Post Thanks(0) Quote Reply Posted: 03-August-2008 at 3:00pm
	How would I go about blocking an IP with the variable "Local_Addr" using your whole range method Hamish? The spam is coming from the same local IP each time. RemAddr = Request.ServerVariables("Local_Addr") If (RemAddr >= "x.x.x.x") and (RemAddr <= "x.x.x.x") Then Response.End End if This doesn't seem to work, any ideas?

Hamish Members Profile Send Private Message Find Members Posts Add to Buddy List Admin Group Joined: 12-October-2006 Location: United Kingdom Status: Offline Points: 56	Post Options Post Reply Quote Hamish Report Post Thanks(0) Quote Reply Posted: 03-August-2008 at 3:26pm
	Hi Logistix, Hmmm - I'm no great expert on this so I did a quick Google. According to the info I found:- LOCAL_ADDR : Returns the server address on which the request came in. I would understand that to mean that the address you would get from that is the server at your ISP that received the request - I would think this would always be the same for ALL traffic, legitimate or spam. If so then if you succeed you would you block your site off from the world (I guess that would block the site spammer !!!! ) Have I misunderstood this?
	Editing ProductCart Code? See WIKI Guidelines for Editing ProductCart's ASP Source Code

Logistix Members Profile Send Private Message Find Members Posts Add to Buddy List Newbie Joined: 30-July-2008 Status: Offline Points: 0	Post Options Post Reply Quote Logistix Report Post Thanks(0) Quote Reply Posted: 03-August-2008 at 4:25pm
	Sorry Hamish I mis-understood what Local_Addr does. It's the local IP of the server not of the workstation which made the request. My bad :) Is there a quicker way of blocking IPs if I want to block lots of ranges of IPs?

Hamish Members Profile Send Private Message Find Members Posts Add to Buddy List Admin Group Joined: 12-October-2006 Location: United Kingdom Status: Offline Points: 56	Post Options Post Reply Quote Hamish Report Post Thanks(0) Quote Reply Posted: 04-August-2008 at 1:57pm
	Hi, there are several options, as always. It partly depends on how much updating it will require & how many ranges you want to block. What are these miscreants doing? Are they trying to login to your site as Admin or Users? If so then an easier solution that will pretty much stop them in their tracks is to switch on the "captcha" images in :- Settings > Advanced Security Settings - Enable both the "Use random number images" options. It blocks pretty much every automated method of attacking the login pages and slows dramatically slows down manual attacks as they have to get the password right AND make sure they get the numbers from the image entered correctly. If you enable this the bad guys will most likely move on to fresh targets.
	Editing ProductCart Code? See WIKI Guidelines for Editing ProductCart's ASP Source Code

Logistix Members Profile Send Private Message Find Members Posts Add to Buddy List Newbie Joined: 30-July-2008 Status: Offline Points: 0	Post Options Post Reply Quote Logistix Report Post Thanks(0) Quote Reply Posted: 06-August-2008 at 9:29am
	Check your Private Messages Hamish :)