[VPS] Country ban

[lucatone17]

Hello i am new in this.. I want to do a country ban for example of EEUU or Russia, china etc.. all countryies tan doesnt speak spanish i dont know how to use well the NFO firewall to do this.. Can somewone helps me?

[kraze]

This is not something I'd recommend you do as doing so could have serious performance impacts. You'll definitely want to stick to banning smaller subnets or malicious traffic only.

[stickz]

Depending on the application(s) used, the overhead could be a lot less to just fetch the area(city, country, continent etc.) from a goeip database.

Inspecting every packet is the absolute worse way to implement something like this.

[soja]

Depending on the application(s) used, the overhead could be a lot less to just fetch the country from a goeip database.

Inspecting every packet is the absolute worse way to implement something like this.

The only way I see that working is if you issue a drop rule for every IP(that sends you traffic) that matches a specified country, otherwise you just run into the same issue.

[stickz]

Depending on the application(s) used, the overhead could be a lot less to just fetch the country from a goeip database.

Inspecting every packet is the absolute worse way to implement something like this.

The only way I see that working is if you issue a drop rule for every IP(that sends you traffic) that matches a specified country, otherwise you just run into the same issue.

It depends on the application used. The point is doing something further down the line (localized) where every packet doesn't need inspected is proper.

Webservers I would just map the locations and rewrite the url; whereas, gameservers just create a quick plugin to kick the client.