Displaying 1 result from an estimated 1 matches for "id8dbqfbhlito".
2004 Nov 01
2
does shorewall support more advance features of netfilter ?
e.g.
string-matching
CodeRed or Nimda viruses before they hit your Web server. The
following rules achieve this:
# DROP HTTP packets related to CodeRed and Nimda
# viruses silently
iptables -t filter -A INPUT -i $EXT_IFACE -p tcp \
-d $IP --dport http -m string \
--string "/default.ida?" -j DROP
iptables -t filter -A INPUT -i $EXT_IFACE -p tcp \
-d $IP --dport http -m string \