Right now, when we have abusers, we have a script that blackholes their IP for some period of time… similar to fail2ban.
We figure that there is a “nicer” way to address this. There is probably a dynamic way to feed haproxy these IPs and … ideally, serve a static page directly out of haproxy the way the error pages are handled… rather than piping to a static web server.
This way, instead of no response, they’d get a friendly page saying their machine has likely been compromised and is definitely misbehaving, etc.
Is there a suggested way to do such a thing?
Thanks in advance!