I want to block any traffic coming from 119.63.196.x but I can't use an HTACCESS file because I'm on a Windows Server (we have an ASP.Net website).

To block the IP address, I want to run this PHP script on every page:


if(substr($_SERVER['REMOTE_ADDR'], 0, 10) == "119.63.196"){exit;}


To be honest, I haven't quite figured out how to write PHP code into the style template header yet. The layer of abstraction using IF CONDITION = is new to me and I haven't run across the tutorial or manual explaining it yet. ?????

Should I add this code to the global.php file? (I'm using vBulletin 3.7.4)

In case you were wondering, 119.63.196 are Baiduspider bots. Baidu is China's search engine (like Google) and they have dozens of spiders constantly indexing our site.

Have you talked to your host about other methods to block ips? What about iptables?

Isn't there an option for that already?

AdminCP > Options > User Banning > Banned IP Addresses
Use this option to prevent certain IP addresses from accessing any part of your board.

If you enter a complete IP address (242.21.11.7), only that IP will be banned.
If you enter a partial IP (243.21.11. or 243.21.11), any IPs that begin with the partial IP will be banned. For example, banning 243.21.11 will prevent 243.21.11.7 from accessing your board. However, 243.21.115.7 would still be able to access your board.

You may also use an '*' as a wildcard for increased flexibility. For example, if you enter 243.21.11*, many IPs will be banned including: 243.21.11.7, 243.21.115.7, 243.21.119.225.

Place a space or a line break between each IP address.

Isn't there an option for that already?

AdminCP > Options > User Banning > Banned IP Addresses

Yes, we did ban that IP range through the ACP but whenever we look at "Who's Online", 80% are bots from that IP. I suspect that they are just indexing our site for China's search engine but our head forum admin wants to block them anyway to be safe.

Normally, this would be as easy as adding a line of code to the header template (see above).

So if I wanted to add the code below to the top of every page, how would I do it if I can't write PHP in the style templates area? Can someone point me to a manual or tutorial?

<php? ECHO "hello world"; ?>

--------------- Added 1312474978 at 1312474978 ---------------

Have you talked to your host about other methods to block ips? What about iptables?

Our site is on GoDaddy and they had no solution since we are on a Windows server. I can use a web.config file to block IP addresses from accessing our ASP.Net website but that won't work for our PHP forum. I've never heard of using IPtables to block traffic. ??

There is a free spam blocking product called zbblock which works in the same way (code is inserted at the top of each page). Their instructions say to do this:

<php? ECHO "hello world"; ?><?php


where the <?php in red is the existing one at the beginning of global.php. I think the reason for having them on the same line is that if you put a newline between them, the newline character will get sent as part of the document and you'll get "header already sent" errors. You could also just put your code on line two so that it was inside the existing <?php tag, but I think they figured this way would keep their added code separate.

BTW, zbblock is a product that does something similar to what you're trying to do, except that it builds up a list of ips to block by scanning for attacks (and I believe it blocks spiders). We used it for a while and it was pretty good except that it was too aggressive about blocking some legit users, mostly because it thought some search result urls were SQL injection attempts. If I had had more time I think I could have tried to solve that issue myself (or asked for help on their forum). In any case they may have done something about that since I tried it

Add the following to your htaccess. Both of the IPs listed are for the Baidu spider. I had a similar issue a few days ago and this stopped them dead in their tracks.

<Files *.*>
order allow,deny
allow from all
deny from 119.63.196.
deny from 220.181.108.
</Files>

Add the following to your htaccess. Both of the IPs listed are for the Baidu spider. I had a similar issue a few days ago and this stopped them dead in their tracks.

<Files *.*>
order allow,deny
allow from all
deny from 119.63.196.
deny from 220.181.108.
</Files>

thanks for the suggestion but, as I understand it, an htaccess file doesn't work on our windows-based server (IIS). We hope to develop a new website in PHP that replaces our ASP.Net website so we can move to apache. That might be a long while though...

--------------- Added 1312485012 at 1312485012 ---------------

There is a free spam blocking product called zbblock which works in the same way (code is inserted at the top of each page).

Thanks! I think we'll try that. :)

Another admin just tried adding this within the vBulletin header template.

<!-- Block specific IP from continuing -->
<if condition=user[ipaddress] = "119.63.196.***" meta HTTP-EQUIV="REFRESH" content="0;
url=http://www.msxlabs.org/banned.php">
<!-- End Block of specific IP -->


All of the users/bots from that IP address currently show that they are viewing an error message. At this point, I'm not sure if that's from my code or his code...or if it was there before.

Well, I'm not sure about the meta tag thing, but the template conditional should be something like:

<!-- Block specific IP from continuing -->
<if condition="user[ipaddress] == '119.63.196.***'">
<meta HTTP-EQUIV="REFRESH" content="0; url=http://www.msxlabs.org/banned.php">
</if>
<!-- End Block of specific IP -->


But even with that, I don't think that comparison with wildcards would work. And unfortunately there is a short list of functions you're allowed to use in a condition, and none of them let you compare substrings. So if you really wanted to go that route you'd have to do the comparison in a plugin and set a variable to use in the condition. Hope that makes sense :)

Add a plugin to init_startup

if (strpos($_SERVER['REMOTE_ADDR'], '119.63.196.') === 0)
{
exit;
}This says:
if IP starts with "119.63.196."
then spit out a blank page

Add a plugin to init_startup

It worked! Dude! You rock! Thanks!!! :up:

That was my first plugin btw. Everything makes so much more sense now. :)


https://vborg.vbsupport.ru/external/2011/08/100.png

Or if you can't get the ip you can block them by name using this https://vborg.vbsupport.ru/showthread.php?t=264932

Add a plugin to init_startup

if (strpos($_SERVER['REMOTE_ADDR'], '119.63.196.') === 0)
{
exit;
}This says:
if IP starts with "119.63.196."
then spit out a blank page
Any way to do an array of IPs to ban?

Working on a mod now which i'll release as soon as i've tested it :)

--------------- Added 1312767380 at 1312767380 ---------------

Released https://vborg.vbsupport.ru/showthread.php?t=268146

Enjoy :)

--------------- Added 1312775585 at 1312775585 ---------------

Now working on a version where you can ban like this 00.00.000.00 - 127.0.0.0 so you will be able to block whole arrays of ip's.