iptables and ssh
Rainer Traut
tr.ml at gmx.de
Tue Jun 13 11:18:59 UTC 2006
Hi,
LC schrieb:
> Hi,
>
> How do write the code for iptables to drop IP(s) trying to access ssh
> after 3 tries and block it for 10mins?
>
> regards
sth like this?
this is from my iptables script, you have to adjust the variables.
$ipt -A INPUT -m state --state NEW -p tcp --dport 22 -m recent --name
SSH --update --seconds 60 --hitcount 4 -j LOG_DROP
$ipt -A INPUT -m state --state NEW -p tcp --dport 22 -m recent --name
SSH --set
Rainer
More information about the fedora-list
mailing list