[plug] firewalling ssh
David Lloyd
lloy0076 at adam.com.au
Mon Jan 8 15:46:05 WST 2007
And...
> iptables -I INPUT -p tcp --dport 22 -i eth0 -m state --state NEW -m recent \
> --set
>
> iptables -I INPUT -p tcp --dport 22 -i eth0 -m state --state NEW -m recent \
> --update --seconds 60 --hitcount 4 -j DROP
>
> This block anything after the 3rd hit from an IP within 60 seconds.
>
* http://www.debian-administration.org/articles/187
...which explains what's happening :)
DSL
More information about the plug
mailing list