On 26/02/2019 14:40, Juha Kankare via arch-general wrote:
I'm getting a lot of connections from China it seems. Whenever I check my journalctl, it's an andless wall of nginx complaints about a single ip spamming requests fro different php files. This happens with hundreds of ip's, and tens of times daily. Has anyone else been hit by this. I already made a shellscript to block all connections from China, but I'm curious as to why this happens, and if anyone else has had the same problem.
Anyways, I fixed my problem via a combination of fail2ban and this script: https://bbs.archlinux.org/viewtopic.php?id=244527, so it isn't a problem anymore