06-20-2020, 08:34 AM
@sAmI
What did you expect? You are about to block several million of IP addresses, or even several ten million (maybe even hundreds of million depending on country) IP addresses. This will take a while even if they are getting blocked based on subnetting.
So what should you do? Wait, maybe? Perhaps.
Thanks a lot for bringing this up @deanhills.
Actually blocking this huge amount of IP addresses via your firewall is like making it commit suicide. Everytime a someone connects the firewall has to look through the several thousand of rules to match the IP address or let it pass. That alone depending on server performance might simply kill it. No D(DoS) required at all because it will just take it down by itself.
What did you expect? You are about to block several million of IP addresses, or even several ten million (maybe even hundreds of million depending on country) IP addresses. This will take a while even if they are getting blocked based on subnetting.
So what should you do? Wait, maybe? Perhaps.
Thanks a lot for bringing this up @deanhills.
Actually blocking this huge amount of IP addresses via your firewall is like making it commit suicide. Everytime a someone connects the firewall has to look through the several thousand of rules to match the IP address or let it pass. That alone depending on server performance might simply kill it. No D(DoS) required at all because it will just take it down by itself.
![[Image: zHHqO5Q.png]](https://i.imgur.com/zHHqO5Q.png)