Shalom Cohen
2013-Jul-10 12:31 UTC
Automatic blacklisting IP''s that exceed the rate limit
Hi, I''ve been wondering whether shorewall supports or is planned to support scenarios where IP is being put to a penalty box/blacklisted for a certain amount of time (if it exceeded a rate limit threshold). There are several ways to perform it with IPTables, like the way described in this article: http://www.briandowney.net/blog/2009/08/20/firewalling-brute-force-attempts-with-iptables/ Thanks, Shalom Cohen -- The above terms reflect a potential business arrangement, are provided solely as a basis for further discussion, and are not intended to be and do not constitute a legally binding obligation. No legally binding obligations will be created, implied, or inferred until an agreement in final form is executed in writing by all parties involved. This email and any attachments hereto may be confidential or privileged. If you received this communication by mistake, please don''t forward it to anyone else, please erase all copies and attachments, and please let me know that it has gone to the wrong person. Thanks. ------------------------------------------------------------------------------ See everything from the browser to the database with AppDynamics Get end-to-end visibility with application monitoring from AppDynamics Isolate bottlenecks and diagnose root cause in seconds. Start your free trial of AppDynamics Pro today! http://pubads.g.doubleclick.net/gampad/clk?id=48808831&iu=/4140/ostg.clktrk
Tom Eastep
2013-Jul-10 13:46 UTC
Re: Automatic blacklisting IP''s that exceed the rate limit
Hi Shalom, As luck would have it, I am just working on a feature that will allow this sort of thing. It will be available in 4.5.19 Beta 2. -Tom On Jul 10, 2013, at 5:31 AM, Shalom Cohen <shalom@outbrain.com> wrote:> Hi, > > I''ve been wondering whether shorewall supports or is planned to support scenarios where IP is being put to a penalty box/blacklisted for a certain amount of time (if it exceeded a rate limit threshold). > There are several ways to perform it with IPTables, like the way described in this article: http://www.briandowney.net/blog/2009/08/20/firewalling-brute-force-attempts-with-iptables/ > > Thanks, > Shalom Cohen > > The above terms reflect a potential business arrangement, are provided solely as a basis for further discussion, and are not intended to be and do not constitute a legally binding obligation. No legally binding obligations will be created, implied, or inferred until an agreement in final form is executed in writing by all parties involved. > > This email and any attachments hereto may be confidential or privileged. If you received this communication by mistake, please don''t forward it to anyone else, please erase all copies and attachments, and please let me know that it has gone to the wrong person. Thanks. > ------------------------------------------------------------------------------ > See everything from the browser to the database with AppDynamics > Get end-to-end visibility with application monitoring from AppDynamics > Isolate bottlenecks and diagnose root cause in seconds. > Start your free trial of AppDynamics Pro today! > http://pubads.g.doubleclick.net/gampad/clk?id=48808831&iu=/4140/ostg.clktrk_______________________________________________ > Shorewall-users mailing list > Shorewall-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/shorewall-usersTom Eastep \ Nothing is foolproof to a Shoreline, \ sufficiently talented fool Washington, USA \ http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ See everything from the browser to the database with AppDynamics Get end-to-end visibility with application monitoring from AppDynamics Isolate bottlenecks and diagnose root cause in seconds. Start your free trial of AppDynamics Pro today! http://pubads.g.doubleclick.net/gampad/clk?id=48808831&iu=/4140/ostg.clktrk