In Nginx, block user based on X header value

http-headers nginx

That's easy. Nginx's "geo" module lets define a variable with value depending on the client's IP address:

geo $ban_ip {
  default 0;
  10.1.0.0/24 1;
};

geo directive should be at http level (e.g. outside server). There is a convenient way to include large IP databases via include or ranges, see the documentation

So, assuming you have such a variable, you may return whatever status codes you'd like, e.g. 403 or 404 (at server level or in location):

if ($ban_ip) {
  return 403;
}

If you'd like to silently drop the connection, use

if ($ban_ip) {
  return 444;
}

444 is a non-standard status code used internally to instruct Nginx to drop the connection. (thus a client does not see it)

Related

Why is psExec hanging indefinitely and giving no error?
Cisco QoS Guidance
Route specific HTTP requests through pfSense OpenVPN
SSD on Vmware ESXI 4 (TRIM? Good Idea?)
Linux policy routing - packets not coming back [closed]
Is it possible to view the contents of an underlying NFS mount without unmounting the NFS content?
Enabling http access on port 80 for centos 6.3 from console
monitor IO to tmpfs partition?
How to recompose a triple integral over a domain into a single integral
What is the theoretical justification for alternatives to MSE minimalisation?
proving a function is Borelmeasurable
For what $n$ is there an injective homomorphism from $\mathbb{Z_n} \to S_7$