[plug] firewalling ssh

Tim Bowden tim.bowden at westnet.com.au
Mon Jan 8 16:13:56 WST 2007


Thanks Shannon and David.   Just what I was looking for.

Regards,
Tim Bowden

On Mon, 2007-01-08 at 15:51 +0900, Shannon Carver wrote:
> Very true, That'd be where I originally got it from!  Good site
> 
> 
> David Lloyd wrote:
> 
> 
> > And...
> >
> >> iptables -I INPUT -p tcp --dport 22 -i eth0 -m state --state NEW -m 
> >> recent \
> >>   --set
> >>
> >> iptables -I INPUT -p tcp --dport 22 -i eth0 -m state --state NEW -m 
> >> recent \
> >>   --update --seconds 60 --hitcount 4 -j DROP
> >>
> >> This block anything after the 3rd hit from an IP within 60 seconds.
> >>
> >
> >  * http://www.debian-administration.org/articles/187
> >
> > ...which explains what's happening :)
> >
> > DSL
> >
> >
> > _______________________________________________
> > PLUG discussion list: plug at plug.org.au
> > http://www.plug.org.au/mailman/listinfo/plug
> > Committee e-mail: committee at plug.linux.org.au
> _______________________________________________
> PLUG discussion list: plug at plug.org.au
> http://www.plug.org.au/mailman/listinfo/plug
> Committee e-mail: committee at plug.linux.org.au




More information about the plug mailing list