Hi all, last night I implemented geoip feature in my firewall. Using geoip I can protect my firewall from any kind of traffic from particular countries ( someone call id racism routing ). I am wondering now if use this patch in combination with other iptables features will this prevent for example different kind of attacks like dos, unauthorized logging and so on. I know it is impossible to stop all attacks, but we can maje their results smaller. I think geoip is very good in cases when you for example know that you are not going to log from Bosnia just simpli put Bosnian's IPs on black list. What is your opinion about advantages and disadvantages of geoip patch. I think it is very usefull. Best wishes and regards Elvir Kuric PS : List of ip addresses which belong to particular countries is not complete, and it will not be- I mean we can not know all addresses and their mappings to countries.
