proxies: block IP attempting SQL injections on openQA (prod)

My staging effort seems to have worked, so let's do prod too. Signed-off-by: Adam Williamson <awilliam@redhat.com>
2026-03-20 03:57:02 +08:00 · 2025-12-30 08:58:11 -08:00
parent b9fe2e598e
commit 37e2d34eb6
1 changed files with 1 additions and 0 deletions
--- a/inventory/group_vars/proxies
+++ b/inventory/group_vars/proxies
@@ -65,6 +65,7 @@ nft_block_rules:
  - 'add rule ip filter INPUT ip saddr 66.249.69.0/24  counter reject'
  - 'add rule ip filter INPUT ip saddr 159.138.218.0/24  counter reject'
  - 'add rule ip filter INPUT ip saddr 188.75.180.46/32  counter reject'
+  - 'add rule ip filter INPUT ip saddr 2.57.121.144/32  counter reject'
 nft_custom_rules:
  # Need for rsync from log01 for logs.
  - 'add rule ip filter INPUT ip saddr 10.16.163.39     tcp dport 873 counter accept'