iptables
Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision Next revision Both sides next revision | ||
|
iptables [2011/09/22 02:05] k2patel [xt_recent] |
iptables [2011/09/22 02:06] k2patel [xt_recent] |
||
|---|---|---|---|
| Line 70: | Line 70: | ||
| In latest version ipt_recent replaced by xt_recent.\\ | In latest version ipt_recent replaced by xt_recent.\\ | ||
| there is few change which could break your iptables rules.\\ | there is few change which could break your iptables rules.\\ | ||
| - | In order to make ssh bruteforce protection working please use following rules. | + | In order to make ssh bruteforce protection working please use following rules.\\ |
| + | this also effect Fedora 15 and latest iptables / kernel | ||
| <code bash> | <code bash> | ||
| Line 77: | Line 78: | ||
| - | -A INPUT -p tcp -m multiport --dports 21,22 -m recent --update --seconds 3600 --name SSH_BAN --rsource -j DROP | + | -A INPUT -p tcp -m multiport --dports 21,22 -m recent --update --seconds 8600 --name SSH_BAN --rsource -j DROP |
| -A INPUT -p tcp -m multiport --dports 21,22 -m state --state NEW -j BRTBLK | -A INPUT -p tcp -m multiport --dports 21,22 -m state --state NEW -j BRTBLK | ||
iptables.txt · Last modified: 2020/08/10 02:35 (external edit)
Page Tools
Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
