PHP IP block

TwiztedFake · 05-08-2007, 08:26 AM

I wanting to create a better ip blocker but can't seem to figure it out.

First here is the code that I get the ip with

PHP Code:

  $ip = ($_SERVER['HTTP_X_FORWARDED_FOR'])

    ?  $_SERVER['HTTP_X_FORWARDED_FOR']

    :  $_SERVER['REMOTE_ADDR'];

This is a sample of the $ip output after that line
$ip = "216.86.152.216";

When an ip is blocked it is added to a table in the database. When the page is accessed it checks for the ip output from the above line against what is in the table.

PHP Code:

  $query=mysql_query("SELECT * FROM bans WHERE banip LIKE '%$ip%'", $c);

$count=mysql_num_rows($query);

mysql_free_result($query);

 
if($count == 1)

{

    die("<b><font color=red size=+1>Your IP has been banned, there is no way around this.</font></b></body></html>");

}

Now here is my problem, for instance if 216.86.152.216 is a banned ip and they have a dynamic ip their next access may be 216.86.152.153. How can I ban the range of an ip without having to redo the input to the db. Is there a way to do it when the ip is checked against the db? For example when I ban 216.86.152.216, I want it to ban all ip's 216.86.152.XXX

Barrucadu · 05-08-2007, 09:26 AM

Edit: Oh, I just saw you said without re-doing the db. Ah well...

There is probably a better way than this:

PHP Code:

  $remoteAddr = ($_SERVER['HTTP_X_FORWARDED_FOR']) 

    ?  $_SERVER['HTTP_X_FORWARDED_FOR'] 

    :  $_SERVER['REMOTE_ADDR'];

$ipBits = explode('.', $remoteAddr);

$ipBits[3] = '*';

$ip = implode('.', $ipBits);

That should output something like "216.86.152.*"

jabba_29 · 05-08-2007, 09:36 AM

There will most definitely be tidier ways of doing this, but

PHP Code:

  <?php

$ip = '216.86.152.216';

$ex   = explode( ".", $ip );

$last = end( $ex );

$ip = str_replace($last .'.', '', $ip);

champ_rock · 05-08-2007, 09:36 AM

any way to do that without using any databases? like using a text file to list all the ip addresses that u need blocking..?

jabba_29 · 05-08-2007, 10:03 AM

Of course.

If you use file() you can open a text file as an array.
Using in_array from there should do the trick.

What exactly do you need to know?
What is your coding level?...

Do you need to know how to write the files or have you got something concrete already?

champ_rock · 05-08-2007, 10:17 AM

Quote:

Originally Posted by jabba_29

Of course.

If you use file() you can open a text file as an array.
Using in_array from there should do the trick.

What exactly do you need to know?
What is your coding level?...

Do you need to know how to write the files or have you got something concrete already?

my coding level is less than a Noob. i know about arrays, file(), foreach and some others.

can u please give me a proper code which i can insert in my already existing php files and use a text file to list out all the ip addresses that i need banned?

-NC- · 05-08-2007, 10:25 AM

Quote:

Originally Posted by Mikor

PHP Code:

  $ipBits = explode('.', $remoteAddr);

$ipBits[3] = '*';

$ip = implode('.', $ipBits);

To make the query LIKE statement work, it might need to be:

PHP Code:

  $ipBits = explode('.', $remoteAddr);

$ipBits[3] = '';

$ip = implode('.', $ipBits);

(no * in second line)

BTW Twizted, you could probably go a bit easier on your DB by doing:

banip LIKE '$ip%'"

(No percent sign at the start)

This assumes your `banip` field contains only a single IP, with no whitespace.

monaco · 05-08-2007, 01:03 PM

Why do you want to do this in PHP? Why not just use the .htaccess file to prevent access from certain IP blocks? That way you don't need to waste server resources handling the request and passing it to PHP, since it's handled by the httpd.

TwiztedFake · 05-08-2007, 05:02 PM

Quote:

Originally Posted by RCRiver

To make the query LIKE statement work, it might need to be:

PHP Code:

  $ipBits = explode('.', $remoteAddr);

$ipBits[3] = '';

$ip = implode('.', $ipBits);

(no * in second line)

BTW Twizted, you could probably go a bit easier on your DB by doing:

banip LIKE '$ip%'"

(No percent sign at the start)

This assumes your `banip` field contains only a single IP, with no whitespace.

Yes a single ip is stored per entry to the db.

Quote:

Why do you want to do this in PHP? Why not just use the .htaccess file to prevent access from certain IP blocks? That way you don't need to waste server resources handling the request and passing it to PHP, since it's handled by the httpd.

Well some of the blocks are done with .htaccess, some are done via php. The reason for this is that this is used on an rpg game, Permant blocks are done through .htaccess, the ones that are done through php are timed blocks, that are reset by a cron job based on the time frame the ban was set for.

champ_rock · 05-08-2007, 07:09 PM

well in my case i use a Centos VPS and it does not seem to take any command from the .htaccess file.. it does not even redirect www. to the root of my site

therefore without .htaccess working i think php is the only way i can achieve it

jerometan · 05-09-2007, 03:17 PM

You can install APF Firewall.

Just get your application to execute "apf -d IP.IP.IP.0/24".
Will block the whole range of IP.IP.IP.*

champ_rock · 05-09-2007, 08:39 PM

please tell me what command should i write in YUM to install apf firewall?

Camron · 05-10-2007, 01:09 AM

Quote:

Originally Posted by champ_rock

please tell me what command should i write in YUM to install apf firewall?

As far as I know there is no current way to install apf via the yum tool. You can use this reference, it's quite easy to install actually:

http://www.webhostgear.com/61.html

05-08-2007, 08:26 AM	#1 (permalink)
TwiztedFake NamePros Regular Join Date: Apr 2004 Location: IL Posts: 339 50.00 NP$ (Donate)	PHP IP block I wanting to create a better ip blocker but can't seem to figure it out. First here is the code that I get the ip with PHP Code: `$ip = ($_SERVER['HTTP_X_FORWARDED_FOR']) ? $_SERVER['HTTP_X_FORWARDED_FOR'] : $_SERVER['REMOTE_ADDR'];` This is a sample of the $ip output after that line $ip = "216.86.152.216"; When an ip is blocked it is added to a table in the database. When the page is accessed it checks for the ip output from the above line against what is in the table. PHP Code: `$query=mysql_query("SELECT * FROM bans WHERE banip LIKE '%$ip%'", $c); $count=mysql_num_rows($query); mysql_free_result($query); if($count == 1) { die("<b><font color=red size=+1>Your IP has been banned, there is no way around this.</font></b></body></html>"); }` Now here is my problem, for instance if 216.86.152.216 is a banned ip and they have a dynamic ip their next access may be 216.86.152.153. How can I ban the range of an ip without having to redo the input to the db. Is there a way to do it when the ip is checked against the db? For example when I ban 216.86.152.216, I want it to ban all ip's 216.86.152.XXX __________________ Four Seasons Outfitters [ 25 $NP/Month ] [ 25 $NP/Month ] [ 25 $NP/Month ] [ 25 $NP/Month] [ 25 $NP/Month]

05-08-2007, 09:26 AM	#2 (permalink)
Barrucadu Barru. Join Date: Aug 2005 Location: East Yorkshire, England Posts: 2,731 78.50 NP$ (Donate)	Edit: Oh, I just saw you said without re-doing the db. Ah well... There is probably a better way than this: PHP Code: `$remoteAddr = ($_SERVER['HTTP_X_FORWARDED_FOR']) ? $_SERVER['HTTP_X_FORWARDED_FOR'] : $_SERVER['REMOTE_ADDR']; $ipBits = explode('.', $remoteAddr); $ipBits[3] = ''; $ip = implode('.', $ipBits);` That should output something like "216.86.152." __________________ Website \| Blog \| Uzbl (my branch) 9thSeptember2009.com

05-08-2007, 09:36 AM	#3 (permalink)
jabba_29 NamePros Member Join Date: Mar 2007 Location: Finland Posts: 29 5.00 NP$ (Donate)	There will most definitely be tidier ways of doing this, but PHP Code: `<?php $ip = '216.86.152.216'; $ex = explode( ".", $ip ); $last = end( $ex ); $ip = str_replace($last .'.', '', $ip);` __________________ Regards Jamie Let the might of your compassion arise to bring a quick end to the flowing stream of the blood and tears ..... Please hear my anguished words of truth. Last edited by jabba_29; 05-08-2007 at 10:00 AM.

05-08-2007, 09:36 AM	#4 (permalink)
champ_rock Senior Member Join Date: Oct 2006 Location: http://akshayjain.org Posts: 2,768 8,037.05 NP$ (Donate)	any way to do that without using any databases? like using a text file to list all the ip addresses that u need blocking..? __________________ Akshay Jain ......................

05-08-2007, 10:03 AM	#5 (permalink)
jabba_29 NamePros Member Join Date: Mar 2007 Location: Finland Posts: 29 5.00 NP$ (Donate)	Of course. If you use file() you can open a text file as an array. Using in_array from there should do the trick. What exactly do you need to know? What is your coding level?... Do you need to know how to write the files or have you got something concrete already? __________________ Regards Jamie Let the might of your compassion arise to bring a quick end to the flowing stream of the blood and tears ..... Please hear my anguished words of truth.

05-08-2007, 01:03 PM	#8 (permalink)
monaco NamePros Regular Join Date: Jul 2005 Location: Tucson, AZ Posts: 695 314.80 NP$ (Donate)	Why do you want to do this in PHP? Why not just use the .htaccess file to prevent access from certain IP blocks? That way you don't need to waste server resources handling the request and passing it to PHP, since it's handled by the httpd. __________________ My Website \| My Blog

05-08-2007, 07:09 PM	#10 (permalink)
champ_rock Senior Member Join Date: Oct 2006 Location: http://akshayjain.org Posts: 2,768 8,037.05 NP$ (Donate)	well in my case i use a Centos VPS and it does not seem to take any command from the .htaccess file.. it does not even redirect www. to the root of my site therefore without .htaccess working i think php is the only way i can achieve it __________________ Akshay Jain ......................

05-09-2007, 03:17 PM	#11 (permalink)
jerometan NamePros Regular Join Date: Feb 2006 Posts: 588 1,620.95 NP$ (Donate)	You can install APF Firewall. Just get your application to execute "apf -d IP.IP.IP.0/24". Will block the whole range of IP.IP.IP.* __________________ Budget NP$ Hosting - Affordable CPanel Hosting! [ Click Here For Sales/Support ] 50NP Proxy Hosting \| URLToUs \| Fast Reliable Budget Host! [ Click Here For Sales/Support ]

05-09-2007, 08:39 PM	#12 (permalink)
champ_rock Senior Member Join Date: Oct 2006 Location: http://akshayjain.org Posts: 2,768 8,037.05 NP$ (Donate)	please tell me what command should i write in YUM to install apf firewall? __________________ Akshay Jain ......................

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)