From: "Roberto Campos" <roberto@meuprovedor.com.br>
To: lartc@vger.kernel.org
Subject: [LARTC] PSD
Date: Fri, 01 Mar 2002 20:16:36 +0000 [thread overview]
Message-ID: <marc-lartc-101501367603349@msgid-missing> (raw)
Hi,
I've been listennig the list for the last 3 months and
i'm using iptables, ip, tc, etc... and learning to love it.
Now i've read about an experimental netfilter "psd" that needs
a patch and that can detect inbound port scans with rules like:
iptables -t nat -A PREROUTING -i eth0 -d x.x.x.x -m psd -j DROP
Than i see "iplimit" (-m iplimit) also experimental and the best
one is that patch that allows us to filter based in the content
of the packet (-m string).
Questions:
Are these still experimental?
If so, are they supposed to go into real kernel soon?
And last but not least:
How can i implement all these rules?
Is there a patch for all of then or i have to patch
each one of them?
I'm starting from a RH 7.2 vanilla kernel, are there any places
where i can find cook recipes on how to implement them?
Which machine (processor/memory) holds all of then working for
a 2 Mgs internet connection?
Thanks in advance for your time.
Roberto Campos
____________________________________________
Meu Provedor Tecnologias e Informática Ltda.
Rua Camerino, 128 Grs. 302
Centro - Rio de Janeiro - RJ - CEP 20080-010
Tel.: 55 21 25181011 (PABX/FAX)
Telefone Móvel - Celular: 55 21 91978284
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
next reply other threads:[~2002-03-01 20:16 UTC|newest]
Thread overview: 2+ messages / expand[flat|nested] mbox.gz Atom feed top
2002-03-01 20:16 Roberto Campos [this message]
2002-03-02 13:17 ` [LARTC] PSD bert hubert
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=marc-lartc-101501367603349@msgid-missing \
--to=roberto@meuprovedor.com.br \
--cc=lartc@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.