Re: iptable log-message

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: For users of Fedora <fedora-list@xxxxxxxxxx>
Subject: Re: iptable log-message
From: Andy Green <andy@xxxxxxxxxxx>
Date: Sun, 27 May 2007 11:23:10 +0100
In-reply-to: <200705271207.08660.manuel@xxxxxxxxxxxxxx>
References: <5729e65a8e42021fe0f2af8acc6b7ac9@xxxxxxxxxxxxxxxx> <200705271207.08660.manuel@xxxxxxxxxxxxxx>
Reply-to: For users of Fedora <fedora-list@xxxxxxxxxx>
User-agent: Thunderbird 2.0.0.0 (X11/20070419)

Manuel Arostegui Ramirez wrote:

> And for a basic and simply quickly solution:
> iptables -I INPUT -s 137.227.xxx.xxx -j DROP

Needs to be

iptables -I INPUT -p tcp -s 137.227.xxx.xxx -j DROP

Stick it in /etc/rc.local (which is what I do along with a comment about
why) or do service iptables save to make it persistent.

You can drop a surprising amount of the Internet like this (prompted to
do so by attacks from those netblocks) without affecting site
availability for actual normal readers.

-Andy

References:
- iptable log-message
  - From: Harald Hoyer (slash)
- Re: iptable log-message
  - From: Manuel Arostegui Ramirez

Prev by Date: Re: logwatch and timezone
Next by Date: Re: postfix problem with talktalk?
Previous by thread: Re: iptable log-message
Next by thread: Re: iptable log-message
Index(es):
- Date
- Thread

[Index of Archives] [Current Fedora Users] [Fedora Desktop] [Fedora SELinux] [Yosemite News] [Yosemite Photos] [KDE Users] [Fedora Tools] [Fedora Docs]