mateenh
commented
8 years ago Suggestion:
1) Create a separate "ACL" file. Include that ACL file in nginx.conf.
2) Write a script to allow easy banning. (Example: SSH into box and typed -ban [ip] or something like that. Or, create an ansible script that connects + adds the IP's into the ACL file.
I do think this will be a huge feature for us because all I know is everytime we've used the ACL/VPC option to block intruding IPs (in Amazon) globally across all of our sites, it fixed the issue immediately (on all sites). However you want to implement this functionality is up to you, but I do think it is huge and something we definitely need.
Or auto ddos block