revise the request acceptance policy and maybe add a configuration system that lets you block IP ranges. you can even just do this with ufw