Re: iptables fw [Belekas @ 2011-09-13 22:42:36] — Newsgroups.lt

Tema: Re: iptables fw

Autorius: Belekas

Data: 2011-09-13 22:42:36

www.fail2ban.org

On 2011.09.13 21:16, CodeC wrote:
> pasikuriau firewall su iptables. liko viena neispresta problema.
> pastoviai atakuojamas 22 (ssh) portas.
>
> vienas is sprendimu galetu buti toks:
>
> iptables -P INPUT ACCEPT
> iptables -P OUTPUT ACCEPT
> iptables -P FORWARD ACCEPT
>
> iptables -A INPUT -i eth0 -p tcp --dport 22 -m state --state NEW -m
> recent --set --name SSH
> iptables -A INPUT -i eth0 -p tcp --dport 22 -m state --state NEW -m
> recent --update --seconds 60 --hitcount 8 --rttl --name SSH -j DROP
>
>
> taciau as naudoju DROP policy:
>
> iptables -P INPUT DROP
> iptables -P OUTPUT DROP
> iptables -P FORWARD DROP
>
> ir poto po viena atidarau ko man reikia. tokiu atveju rules'ai 22-am
> portui nebetenka prasmes. kaip ta pati (ar bent panasiai) realizuoti
> naudojant DROP policy?

3D astronomy agriculture audio autos autos.audi autos.audio autos.binaries autos.bmw autos.club autos.ford autos.hondacrx autos.japan autos.mercedes autos.opel autos.sport autos.volvo autos.vw avia avia.binaries bankcards binaries books building cinema commerce comp.hardware comp.software comp.lietuvinimas comp.networks culture darbas.ieskau darbas.siulau design economics electronics fauna fauna.aqua fauna.binaries fishing flora foto foto.binaries games games.cs games.online gsm gurmanai humour humour.binaries internet law microsoft moto music music.binaries music.instruments music.LT.binaries navigacija php politics programming rpg sport studying sveikata talk test translation transportation travel travel.binaries tv unix video video.binaries watersports www www.flash pda autos.supermama.lt mobile darbas retro.3D retro.agriculture retro.astronomy retro.audio retro.autos retro.autos.audi retro.autos.audio retro.autos.binaries retro.autos.bmw retro.autos.club retro.autos.ford retro.autos.hondacrx retro.autos.japan retro.autos.mercedes retro.autos.opel retro.autos.sport retro.autos.supermama retro.autos.supermama.lt retro.autos.volvo retro.autos.vw retro.avia retro.avia.binaries retro.bankcards retro.beos retro.binaries retro.books retro.building retro.cinema retro.commerce retro.comp retro.comp.hardware retro.comp.lietuvinimas retro.comp.networks retro.comp.software retro.culture retro.darbas retro.darbas.ieskau retro.darbas.siulau retro.design retro.economics retro.electronics retro.e-vejas retro.fauna retro.fauna.aqua retro.fauna.binaries retro.fishing retro.flora retro.foto retro.foto.binaries retro.games retro.games.cs retro.games.online retro.games.rpg retro.genealogija retro.gsm retro.gurmanai retro.humour retro.humour.binaries retro.internet retro.YZF retro.YZF.nebuk retro.YZF.nebuk.netikintis retro.YZF.nebuk.netikintis.buk retro.YZF.nebuk.netikintis.buk.tikintis retro.law retro.microsoft retro.mobile retro.moto retro.music retro.music.binaries retro.music.instruments retro.music.LT retro.music.LT.binaries retro.navigacija retro.news retro.news.taisykles retro.newuser retro.pda retro.php retro.politics retro.programming retro.rpg retro.sport retro.studying retro.sveikata retro.talk retro.translation retro.transportation retro.travel retro.travel.binaries retro.tv retro.unix retro.video retro.video.binaries retro.watersports retro.www retro.www.flash diy lt.rkm.news.announce lt.rkm.news.newuser

+transmission web interface + iptablespwelectronic2011-11-23 23:31

+Proxy@Info2011-11-23 11:33

+portai vaiduokliailingus2011-11-16 20:55

+freeBSd forumaiNn2011-11-13 22:15

+Reikia specialisto pagalbosbes <jurijusb(spam_filter)@gmail.com>2011-11-13 18:09

+Mailserveris ir GmailRrr2011-11-11 14:23

+SEB bankas ieško "Techninės įrangos ir operacinių sistemų specialisto ( -ės)"Saulius2011-11-01 19:36

+Klausimukas dėl BindHyperLink2011-10-31 08:50

+Monitoriaus pasukimas 90 (vertikaliai)Liu2011-10-27 17:09

+2k serverio virtualizacijaZilvinas2011-10-26 16:59

+Anglonas + Ubuntu 11.10vaidas1002011-10-26 15:01

+Postfix/Amavis/MySQL ir whitelistNicMC2011-10-20 14:54

+FTP mount folderPaul_2011-10-17 14:41

+Vlan debianTomas2011-10-16 17:26

Dennis Ritchie, Creator of UNIX and C, Dead at 70andrws2011-10-13 20:32

+ircd ???julius2011-10-13 11:44

Assitencia reparo computadores jardim da penha vitoria 27 9997- 0099pcnetsecurity@gmail.com33852manutencao computadores vitoria2011-10-10 09:33

+CalibreArunasst2011-10-08 13:12

+dar vienas darbasAndrius..2011-10-07 13:20

+Linuxmint negaliu atstatyti LT kalbosStilius2011-10-03 16:47

freebsd gmirror ir cacheNn2011-10-01 20:20

+mount cif error ubuntu serverjulius2011-09-27 17:32

+darbas@Mindaugas2011-09-27 08:22

+Proxy serverInfo2011-09-19 09:46

+SMS alertsZilvinas2011-09-16 17:14

+Virtualizacija ir darbas ant HostoLiu2011-09-16 11:15

-iptables fwCodeC2011-09-13 21:16

Re: iptables fwaspats2011-09-15 23:20

Re: iptables fwCodeC2011-09-16 09:06

Re: iptables fwejs2011-09-15 09:33

Re: iptables fwCodeC2011-09-15 09:59

Re: iptables fwufonaut2011-09-14 22:27

Re: iptables fwDomas Mituzas2011-09-14 05:30

Re: iptables fwNerijus2011-09-15 13:45

Re: iptables fwNerijus2011-09-15 02:39

Re: iptables fwDomas Mituzas2011-09-15 10:28

Re: iptables fwNerijus2011-09-15 14:16

Re: iptables fwCodeC2011-09-14 14:43

Re: iptables fwNerijus2011-09-15 13:47

Re: iptables fwDomas Mituzas2011-09-15 14:45

Re: iptables fwNerijus2011-09-16 13:24

Re: iptables fwDomas Mituzas2011-09-16 14:47

Re: iptables fwNerijus2011-09-15 14:17

Re: iptables fwDomas Mituzas2011-09-15 14:45

Re: iptables fwDomas Mituzas2011-09-15 10:28

Re: iptables fwBelekas2011-09-13 22:42

Re: iptables fwCodeC2011-09-13 23:07

Re: iptables fwarulis2011-09-14 08:27

+ftp playbackCodeC2011-09-04 14:56

+Kaip įeiti į tekstinę aplinkąStilius2011-09-03 19:32

+Klausimas dėl XENSigun2011-09-02 15:35

user uzsimtumo monotoringasNuomone2011-09-02 10:46

+HP ProLiant Support Pack for Debian 6 SqueezeNerijus Kislauskas2011-08-23 10:52

BCMNuomone2011-08-17 15:40

+cross compilerpaNic2011-08-11 12:39

+web torrentasDidzkis2011-08-08 11:00

+dlink dir-330 dd-wrtMarius K.2011-08-05 11:55

+gal kas turit minciu del situ pranesimu?SKA2011-08-04 18:24

+Kažką gyvenime praleidau?ejs2011-08-03 18:56

ubuntu 10.04 64 bit i telehasaMarius K.2011-08-03 16:33

+Q: greitas diskas swap'ui - SSD vs VRvytjon2011-08-01 16:43

+Ubuntu ir TV tiuneris ?Alvidon2011-07-29 20:15

+sveikinu visus adminus :)bambukas2011-07-29 14:42

+regexp'aiejs2011-07-29 14:42

+Padėkit patarimuNicMC2011-07-29 11:06

25 24 23 22 21 20 19 18 17 16 15 14 13 12 11 10 9 8 7 6