Skip to content
/ aws-block Public

Middleware to block traffic coming from AWS networks

1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

CaptainCodeman/aws-block

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits

example

example

 
 

aws_block.go

aws_block.go

 
 

readme.md

readme.md

 
 

Repository files navigation

AWS Block

Middleware to block traffic coming from AWS networks by checking the various AWS address ranges.

Sorry AWS, but all the annoying bots usually seem to come from you ...

If you have a web site then you will likely have it visited by bots, oh so many bots. Some of them are useful and necessary and abide by robots.txt but many are badly bahaved content scrapers, abusing your bandwidth, overloading your servers and costing you money all so they can selling your content or use it to sell their own SEO services.

Amazon EC2 seems to be the go-to solution for anyone wanting to host a web crawler. This package makes it easy to block this server-to-server traffic in order to prioritize traffic from legitimate site visitors.

Usage

Get package and import it:

go get -u github.com/captaincodeman/aws-block

import (
    "net/http"
    "golang.org/x/net/context"
    "github.com/captaincodeman/aws-block"
)

Create a new blocker instance configured as required:

blocker := awsblock.New(&awsblock.Config{
    Interval: time.Hour * 24,   // periodic check for IP range updates
    Region:   "us-east-1",      // region to block (empty for all)
    Service:  "ec2",            // service to block (empty for all)
})

Start the updating service, pass in a cancellable-context if cancellation is required (or else just use context.Background()):

ctx, cancel := context.WithCancel(context.Background())
defer cancel()

blocker.Start(ctx, http.DefaultClient)

Use the blocker middleware to block any traffic coming from AWS:

m := http.NewServeMux()
m.HandleFunc("/", index)
h := blocker.Middleware(m)

log.Fatal(http.ListenAndServe(":8080", h))

Or use the AWSRequest method within your own middleware:

func LogAWS(blocker *awsblock.Blocker, next http.Handler) http.Handler {
	fn := func(w http.ResponseWriter, r *http.Request) {
		if blocker.AWSRequest(r) {
			log.Println("AWS request by", r.UserAgent())
		}

		next.ServeHTTP(w, r)
	}

	return http.HandlerFunc(fn)
}

It's a good idea to start by logging the requests that match so that you can see which traffic would be blocked if the middleware was used. If you have some valid / legitimate traffic coming from AWS you may want to create some whitelisting system first (e.g. by useragent, hostname or IP) to allow it.

About

Middleware to block traffic coming from AWS networks

Topics

golang aws middleware block bots aws-ec2

Resources

Readme
Activity

Stars

1 star

Watchers

3 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages