On Fri, Apr 20, 2007 at 10:35:23PM +0200, Franck Joncourt wrote: > > These are the rules I use for my ftp server, and it works fine : > > iptables -A lan_in_new -p tcp --syn --dport 21 -m recent \ > --set--name ftp_hits_list2
> iptables -A wan_in_new -p tcp --syn --dport 21 -m recent --rcheck \ > --seconds 300 --hitcount 4 --name ftp_hits_list2 -j reject_all oups ! not 'wan_in_new' but 'lan_in_new' Taken from an old release :p! > iptables -A lan_in_new -p tcp --syn --dport 21 -j ACCEPT > -- Franck Joncourt http://www.debian.org http://smhteam.info/wiki/ GPG server : pgpkeys.mit.edu Fingerprint : C10E D1D0 EF70 0A2A CACF 9A3C C490 534E 75C0 89FE
signature.asc
Description: Digital signature
