I want to block all non-US users from accessing my website. I'm using nginx on the front end and have a django powered website.
1) How can I determine what are US IP addresses?
2) Should I be blocking them in my webserver or in my application layer?
+4
A:
You need a GEO location provider.
Some are free, some are online checks, some give you a list or a library.
Generally the more accuracy you want the more you pay for it.
There is a limit to how accurately you can do this. Some small countries traffic might be routed through the US or it's name servers hosted in the US. Generally you shouldn't get too many false negatives for US customers.
Martin Beckett
2009-10-21 14:23:15
http://geodjango.org/docs/geoip.html - Might help
AvatarKava
2009-10-21 14:25:47
There are bunch of them listed in the wiki link depending on which language/framework you are using
Martin Beckett
2009-10-21 15:37:25
+4
A:
I've used mod_geoip and found it to be largely but not completely effective. The accuracy of the IP / country database is one issue, as is keeping that database up-to-date. I also found that while it helped mitigate some comment spam and DDOS type queries coming from parts of the world not relevant to the content of our site, it also had some unintended consequences. For instance, there were people who attempted to update their site listings while on vacation overseas who were blocked. http://www.maxmind.com/app/mod%5Fgeoip
Devin Ceartas
2009-10-21 14:24:49