On Sat May 2 2009, Andrei Popescu wrote: > > need to run: > > iptables -I INPUT -p tcp -m state --state NEW --dport 80 -i eth0 -j > > ACCEPT iptables -I INPUT -p tcp -m state --state NEW --dport 22 -i eth0 > > -j ACCEPT /sbin/iptables -N ssh-connection > > /sbin/iptables -A ssh-connection -i eth0 -p tcp --dport 22 -m > > recent --update --seconds 600 --hitcount 4 --rttl --name SSH -j > > LOG --log-prefix "SSH_brute_force " > > /sbin/iptables -A ssh-connection -i eth0 -p tcp --dport 22 -m > > recent --update --seconds 600 --hitcount 4 --rttl --name SSH -j DROP > > /sbin/iptables -A ssh-connection -p tcp --dport 22 -m state --state NEW > > -m recent --set --name SSH -j ACCEPT > > Sorry, I'm not familiar with either iptables or firestarter. You might > want to start a new thread about this.
I'm not familiar with firestarter either, that's why I tried to create a shell script.. I'm better when I can work with plain old config files.. and VI :) -- Paul Cartwright Registered Linux user # 367800 Registered Ubuntu User #12459 -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
