-
Notifications
You must be signed in to change notification settings - Fork 0
4.7.5 Configuration Ip2location Proxy BIN File Code
Since VPN (Virtual Private Network) and IP NAT (Masquerading source ip) came into existence, it has become really difficult for the firewalls to guess who is accessing resources just by looking at the source IP in the packets header. There is no way for the firewall to know the true IP address unless there is a major change done in the software code of TCP/IP that stores the whole chain of the IP connection, which is next to impossible.
Ip2Location's database includes proxy information which takes out the guess work for the server as to where the source IP address is coming from. If someone is connecting via a Proxy (VPN), ip2location database has this information.
PHPFirewall filter has an option for you to block someone if they are using Proxy connections even when the filter they hit is set to allow the connection.
With respect to iplocation.io API, this is possible if you have a higher level of subscription. With BIN file, there is also a Proxy BIN file which allows you to lookup this information. You can define the Proxy BIN file information which should be used by PHPFirewall.
admin@phpterminal:firewall(config)# set ip2location proxy bin file code
...
OPTIONS: [PX3BIN | PX3LITEBIN]
PROXY BIN FILE CODE (PX3LITEBIN) : PX3LITEBIN
SET IP2LOCATION PROXY BIN FILE CODE OUTPUT
...
FIREWALL DETAILS > IP2LOCATION_PROXY_BIN_FILE_CODE : PX3LITEBIN
...
admin@phpterminal:firewall(config)# $firewall->setIp2locationProxyBinFileCode('PX3LITEBIN');NOTE: In the example above, we are using the Proxy BIN file downloaded from lite.ip2location.com website. And PX3 is sufficient for PHPFirewall to filter traffic as per ip addresses and country/state(region)/city.