Ashley M. Kirchner wrote: > Some asshole on idbnet.net is slamming on mail server and getting access > denied through sendmail. However I would like to avoid it even getting in > (before hitting sendmail). How can I block their access through ipchains? > > Right now, my rules are like this (thanks to lokkit): > > > # Firewall configuration written by lokkit > # Manual customization of this file is not recommended. > # Note: ifup-post will punch the current nameservers through the > # firewall; such entries will *not* be listed here. > :input ACCEPT > :forward ACCEPT > :output ACCEPT <<<<<ADD HERE>>>>>>
> -A input -s 0/0 -d 0/0 22 -p tcp -y -j ACCEPT > -A input -s 0/0 -d 0/0 25 -p tcp -y -j ACCEPT > -A input -s 0/0 -d 0/0 -i lo -j ACCEPT > -A input -s 0/0 -d 0/0 -i eth0 -j ACCEPT > -A input -s $internal_dns 53 -d 0/0 -p udp -j ACCEPT > -A input -s 0/0 -d 0/0 -p tcp -y -j REJECT > -A input -s 0/0 -d 0/0 -p udp -j REJECT > > > The relay I'm getting slammed from is 211.108.38.83. I need to block this > asshole. > > -- > W | I haven't lost my mind; it's backed up on tape somewhere. > +-------------------------------------------------------------------- > Ashley M. Kirchner <mailto:[EMAIL PROTECTED]> . 303.442.6410 x130 > IT Director / SysAdmin / WebSmith . 800.441.3873 x130 > Photo Craft Laboratories, Inc. . 3550 Arapahoe Ave. #6 > http://www.pcraft.com ..... . . . Boulder, CO 80303, U.S.A. > > > > > -A input -s 211.108.38.83 -j REJECT Hope this helps Regards -- Francisco Neira B. Administrador de Red Defensoria del Pueblo Lima, Peru, -05:00 UTC -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe https://listman.redhat.com/mailman/listinfo/redhat-list
