Hi Can i set up shorewall to block an ip address that try to connect to my box many times per second?. And if I can, how and where? Best Regards Mario. Pd.: welcome back Tom :) ------------------------------------------------------- This SF.Net email is sponsored by the ''Do More With Dual!'' webinar happening July 14 at 8am PDT/11am EDT. We invite you to explore the latest in dual core and dual graphics technology at this free one hour event hosted by HP, AMD, and NVIDIA. To register visit http://www.hp.com/go/dualwebinar
Thank you Jason>Put them in the ''blacklist'' file.yes, i Know this way. but I looking for an automatic way. I mean the way that i dont have to write a file Regards -----Mensaje original----- De: shorewall-users-admin@lists.sourceforge.net [mailto:shorewall-users-admin@lists.sourceforge.net]En nombre de Jason Martin Enviado el: Wednesday, July 13, 2005 8:55 AM Para: shorewall-users@lists.sourceforge.net Asunto: Re: [Shorewall-users] block ip On Wed, Jul 13, 2005 at 08:26:36AM -0600, mbeltran@americatel.com.sv wrote:> Hi > Can i set up shorewall to block an ip address that try to connect to mybox> many times per second?. And if I can, how and where?Put them in the ''blacklist'' file. -Jason Martin> Best Regards > > Mario. > > Pd.: welcome back Tom :) > > > ------------------------------------------------------- > This SF.Net email is sponsored by the ''Do More With Dual!'' webinarhappening> July 14 at 8am PDT/11am EDT. We invite you to explore the latest in dual > core and dual graphics technology at this free one hour event hosted byHP,> AMD, and NVIDIA. To register visit http://www.hp.com/go/dualwebinar > _______________________________________________ > Shorewall-users mailing list > Shorewall-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/shorewall-users-- We give nothing as willingly as our advice. This message is PGP/MIME signed. ------------------------------------------------------- This SF.Net email is sponsored by the ''Do More With Dual!'' webinar happening July 14 at 8am PDT/11am EDT. We invite you to explore the latest in dual core and dual graphics technology at this free one hour event hosted by HP, AMD, and NVIDIA. To register visit http://www.hp.com/go/dualwebinar
On Wed, Jul 13, 2005 at 08:26:36AM -0600, mbeltran@americatel.com.sv wrote:> Hi > Can i set up shorewall to block an ip address that try to connect to my box > many times per second?. And if I can, how and where?Put them in the ''blacklist'' file. -Jason Martin> Best Regards > > Mario. > > Pd.: welcome back Tom :) > > > ------------------------------------------------------- > This SF.Net email is sponsored by the ''Do More With Dual!'' webinar happening > July 14 at 8am PDT/11am EDT. We invite you to explore the latest in dual > core and dual graphics technology at this free one hour event hosted by HP, > AMD, and NVIDIA. To register visit http://www.hp.com/go/dualwebinar > _______________________________________________ > Shorewall-users mailing list > Shorewall-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/shorewall-users-- We give nothing as willingly as our advice. This message is PGP/MIME signed.
Mario wrote on 13/07/2005 11:26:36:> Hi > > Can i set up shorewall to block an ip address that try to connect to mybox> many times per second?. And if I can, how and where? > > Best Regards > > Mario. > > Pd.: welcome back Tom :) >you can use blacklists. take a look at: http://www.shorewall.net/blacklisting_support.htm cheers, Eduardo
On Wed, 13 Jul 2005 mbeltran@americatel.com.sv wrote:> Hi > > Can i set up shorewall to block an ip address that try to connect to my box > many times per second?. And if I can, how and where?See: /etc/shorewall/blacklist> Best Regards > > Mario. > > Pd.: welcome back Tom :) > > > ------------------------------------------------------- > This SF.Net email is sponsored by the ''Do More With Dual!'' webinar happening > July 14 at 8am PDT/11am EDT. We invite you to explore the latest in dual > core and dual graphics technology at this free one hour event hosted by HP, > AMD, and NVIDIA. To register visit http://www.hp.com/go/dualwebinar > _______________________________________________ > Shorewall-users mailing list > Shorewall-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/shorewall-users >------------------------------------------------------- This SF.Net email is sponsored by the ''Do More With Dual!'' webinar happening July 14 at 8am PDT/11am EDT. We invite you to explore the latest in dual core and dual graphics technology at this free one hour event hosted by HP, AMD, and NVIDIA. To register visit http://www.hp.com/go/dualwebinar
See: http://www.shorewall.net/blacklisting_support.htm And read about "dynamic blacklisting" The "shorewall drop" and "shorewall reject" commands can be used to do what you''re asking. Combined with "shorewall save" you can make the dynamic blacklist persist. David On 13 Jul 2005 at 8:50, mbeltran@americatel.com.sv wrote:> Thank you Jason > >Put them in the ''blacklist'' file. > yes, i Know this way. but I looking for an automatic way. I mean the way > that i dont have to write a file > > Regards > > -----Mensaje original----- > De: shorewall-users-admin@lists.sourceforge.net > [mailto:shorewall-users-admin@lists.sourceforge.net]En nombre de Jason > Martin > Enviado el: Wednesday, July 13, 2005 8:55 AM > Para: shorewall-users@lists.sourceforge.net > Asunto: Re: [Shorewall-users] block ip > > > On Wed, Jul 13, 2005 at 08:26:36AM -0600, mbeltran@americatel.com.sv wrote: > > Hi > > Can i set up shorewall to block an ip address that try to connect to my > box > > many times per second?. And if I can, how and where? > Put them in the ''blacklist'' file. > -Jason Martin > > > Best Regards > > > > Mario. > > > > Pd.: welcome back Tom :) > > > > > > ------------------------------------------------------- > > This SF.Net email is sponsored by the ''Do More With Dual!'' webinar > happening > > July 14 at 8am PDT/11am EDT. We invite you to explore the latest in dual > > core and dual graphics technology at this free one hour event hosted by > HP, > > AMD, and NVIDIA. To register visit http://www.hp.com/go/dualwebinar > > _______________________________________________ > > Shorewall-users mailing list > > Shorewall-users@lists.sourceforge.net > > https://lists.sourceforge.net/lists/listinfo/shorewall-users > > -- > We give nothing as willingly as our advice. > This message is PGP/MIME signed. > > > ------------------------------------------------------- > This SF.Net email is sponsored by the ''Do More With Dual!'' webinar happening > July 14 at 8am PDT/11am EDT. We invite you to explore the latest in dual > core and dual graphics technology at this free one hour event hosted by HP, > AMD, and NVIDIA. To register visit http://www.hp.com/go/dualwebinar > _______________________________________________ > Shorewall-users mailing list > Shorewall-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/shorewall-users------------------------------------------------------- SF.Net email is sponsored by: Discover Easy Linux Migration Strategies from IBM. Find simple to follow Roadmaps, straightforward articles, informative Webcasts and more! Get everything you need to get up to speed, fast. http://ads.osdn.com/?ad_id=7477&alloc_id=16492&op=click
mbeltran@americatel.com.sv wrote:> Thank you Jason > >>Put them in the ''blacklist'' file. > > yes, i Know this way. but I looking for an automatic way. I mean the way > that i dont have to write a fileCheck the archives of this list - i believe someone recently posted a script to trawl logs and automatically add hosts to the blacklist. -- Paul <http://paulgear.webhop.net> -- Did you know? If you use two dashes followed by a space as your signature separator, good email programs will chop them off automatically, reducing noise in email replies.