search for: csblock

...ked as we continue to see the e-mail messages after the blocks are in place. Most frequently these occur from courier-imap failed login attempts, less frequently from sshd. To start, iptables is initialized by setting up a named rule set, say on eth0: # these two set up the rule set. iptables -N csblocks iptables -A csblocks -j RETURN # now add it to input, check csblocks on all new connections. iptables -i eth0 -m state --state NEW -j csblocks #Insert block IP address 1.2.3.4 as first rule in the set. iptables -I csblocks 1 -s 1.2.3.4 -j DROP # now add a rule to prevent IP forwarding on gateway...