Re: Blocking IP - David Cannings

Linux Netfilter discussions
 help / color / mirror / Atom feed

From: David Cannings <lists@edeca.net>
To: netfilter@lists.netfilter.org
Subject: Re: Blocking IP
Date: Thu, 29 Jul 2004 13:31:54 +0100	[thread overview]
Message-ID: <200407291331.54691.lists@edeca.net> (raw)
In-Reply-To: <001601c47565$8e0ba110$858310ac@suarapembaruan.com>

On Thursday 29 July 2004 13:14, david wrote:
> My mail server received so many virus mails from ip 202.145.10.147 and
> after i look at gateway (linux) and i using iptraf i see so many
> traffic from 202.145.10.147.
> After that i try to block all traffic from 202.145.10.147 with command
> : #iptables -A INPUT -s 202.145.10.146 -j DROP

Two suggestions:

- You might like to also put that in your FORWARD chain:
  # iptables -I FORWARD -s 202.145.10.146 -j DROP
- Use -I instead of -A, this will INSERT at the top of the list instead of 
APPENDING to the bottom.

Check the output of `iptables -L -vxn` (which you could paste relevant 
bits of into your email, if necessary) and see if there are any other 
ACCEPT rules in your INPUT chain that would allow packets from that IP 
before your rule that denies them.

David

next prev parent reply	other threads:[~2004-07-29 12:31 UTC|newest]

Thread overview: 15+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2004-06-02 12:58 security question Andreas Westendörpf
2004-07-29 12:14 ` Blocking IP david
2004-07-29 12:10   ` Victor Julien
2004-07-29 12:40     ` david
2004-07-29 13:29       ` Victor Julien
2004-07-29 13:42       ` Les Mikesell
2004-07-29 12:18   ` Alejandro Flores
2004-07-29 14:15     ` Aleksandar Milivojevic
2004-07-29 16:57       ` Alejandro Flores
2004-07-29 12:25   ` Dhananjoy Chowdhury
2004-07-29 12:28   ` Les Mikesell
2004-07-29 12:48     ` david
2004-07-29 12:31   ` David Cannings [this message]
2004-07-29 14:04   ` Aleksandar Milivojevic
  -- strict thread matches above, loose matches on Subject: below --
2003-12-25 13:13 Blocking ip -

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=200407291331.54691.lists@edeca.net \
    --to=lists@edeca.net \
    --cc=netfilter@lists.netfilter.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox