Hot Article
- Centos7 closes and restarts the system firewall and opens firewall ports
- How IID server uses Xshell to connect to Linux (centos) server
- BT panel forgets the background login URL, and the solution to the security entrance verification failure
- The php domain name points to ip, how to use the specified ip address to access a server in the url request domain name in curl mode
- How to purchase a dedicated server
- Error connecting to MySQL: Cant connect to MySQL server (10060)
If you go to the anti-attack CDN, will the source IP be hit? How to prevent source IP leaks
- Author:Jack
- Category:Anti-attack CDN
- Release Time:2022-11-28
Recently, a friend went to Anti-DDoS Pro's CDN, but he was caught by the source IP and couldn't resist. Later, I asked the person who asked Anti-DDoS Pro CDN, and they gave a statement that they wanted to block censys' scanning, so It can greatly reduce the risk of source IP leakage. 571 Sharing Home will also share it with everyone here. Be prepared, and if you see it, try to block it.
Censys can search for the back-end IP corresponding to the domain name, it will scan the 80 8000 8080 443 4433 ports of all IPs, and even scan the https SSL domain name certificate, and the collected information will be published on the Internet. Many hackers use This thing finds your origin IP.
Censys also knows this situation, so it gives the option of blocking. As long as you block his spider, you can prevent hackers from using Censys to scan the code.
If we take the pagoda panel as an example, in the firewall, the following IP access can be prohibited:
CIDR version:
74.120.14.0/24
162.142.125.0/24
167.248.133.0/24
192.35.168.0/23
For example, IDGlobal of:
ip segment version:
74.120.14.0 – 74.120.14.255
162.142.125.0 – 162.142.125.255
167.248.133.0 – 167.248.133.255
192.35.168.0 – 192.35.169.255
There is also a more convenient setting method, that is to block the Censys crawler robot user-agent
The official UA is: Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)
We just need to filter on the pagoda nginx firewall – User-Agent and add Censys|. Among them, "|" is the delimiter, which also needs to be added.