From mboxrd@z Thu Jan 1 00:00:00 1970 From: George Chacon Subject: RE: How to keep record of repeat attackers? Date: Thu, 13 Mar 2003 07:46:30 -0800 Sender: netfilter-admin@lists.netfilter.org Message-ID: References: <1047547166.8677.15.camel@tech004.alphalink.fr> Mime-Version: 1.0 Content-Transfer-Encoding: 7BIT Return-path: In-reply-to: <1047547166.8677.15.camel@tech004.alphalink.fr> Errors-To: netfilter-admin@lists.netfilter.org List-Help: List-Post: List-Subscribe: , List-Id: List-Unsubscribe: , List-Archive: Content-Type: text/plain; charset="us-ascii" To: Eric Leblond , Netfilter Mailing List Accessing the netfilter logs in a web browser on a separate computer sounds perfect. That's exactly what I'm looking for. Thank you for the information. George Chacon -----Original Message----- From: netfilter-admin@lists.netfilter.org [mailto:netfilter-admin@lists.netfilter.org]On Behalf Of Eric Leblond Sent: Thursday, March 13, 2003 1:19 AM To: Netfilter Mailing List Subject: RE: How to keep record of repeat attackers? On Thu, 2003-03-13 at 09:50, George Chacon wrote: > Wow! I'm guessing you've been using iptables for a while. I thank you for > the thorough response. I'll take it and slowly examine it a line and word > at a time - and do further research on some of the terms. I'll also take a > look at http://ntop.org. It does look pretty nice. You can use ulog-php which is an web interface to ulog netfilter logs. It give you useful stats as most often blocked hosts ... The homepage is : http://home.regit.org/ulogd-php.html a demo site is available at http://home.regit.org/ulog-demo/ It may be the kind of thing you want. -- Eric Leblond Init-Sys