Iptables is not blocking an ip?

Bruno Wolff III bruno at wolff.to
Mon Jul 24 15:41:18 UTC 2006


On Mon, Jul 24, 2006 at 09:24:18 -0500,
  "chrisl at xp.etowns.net" <chrisl at xp.etowns.net> wrote:
> At one of my customers sites I have iptables configured to drop all ssh 
> packets unless they originate from one of two addresses. However in 
> logwatch, I had login attempts though SSH. 
> Illegal users from:
>    220.193.2.37: 6 times
> 
> Now the address above is not one on the allowed list. Is it possible that 
> they were able to get past iptables to attempt the login?

It would probably help if you posted your iptables rule set.
You might also check and make sure that they are actually installed, in
case something went wrong after a reboot.




More information about the fedora-list mailing list