I''m following a tutorial that shows how to block UltraSurf with fail2ban, as there is no information with Shorewall, I''m trying to adapt, but this hard for me :-( put this rule (see below) at start and it did not work /etc/shorewall/init run_iptables-A FORWARD-d 65.49.14.0/24-j LOG - log-prefix "= UltraSurf =" - log-level info PS: I''m following this howto (see below) www.dotsharp.com.br/linux/como-fazer-para-bloquear-ultrasurf-solucao-definitiva-iptables-fail2ban.html Any idea? ------------------------------------------------------------------------------ How ServiceNow helps IT people transform IT departments: 1. Consolidate legacy IT systems to a single system of record for IT 2. Standardize and globalize service processes across IT 3. Implement zero-touch automation to replace manual, redundant tasks http://pubads.g.doubleclick.net/gampad/clk?id=51271111&iu=/4140/ostg.clktrk
On 09/11/2013 05:49 AM, Joseh-Henrique Cetano de Brito e Silva wrote:> I''m following a tutorial that shows how to block UltraSurf with > fail2ban, as there is no information with Shorewall, I''m trying to > adapt, but this hard for me :-( > > put this rule (see below) at start and it did not work > > /etc/shorewall/init > run_iptables-A FORWARD-d 65.49.14.0/24-j <http://65.49.14.0/24-j> LOG - > log-prefix "= UltraSurf =" - log-level info > > PS: I''m following this howto (see below) > > www.dotsharp.com.br/linux/como-fazer-para-bloquear-ultrasurf-solucao-definitiva-iptables-fail2ban.html > <http://www.dotsharp.com.br/linux/como-fazer-para-bloquear-ultrasurf-solucao-definitiva-iptables-fail2ban.html> > > Any idea?If you do a Google search for ''fail2ban+shorewall'', you will find lots of helpful articles. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ How ServiceNow helps IT people transform IT departments: 1. Consolidate legacy IT systems to a single system of record for IT 2. Standardize and globalize service processes across IT 3. Implement zero-touch automation to replace manual, redundant tasks http://pubads.g.doubleclick.net/gampad/clk?id=51271111&iu=/4140/ostg.clktrk
Thanks for your reply, but I already use fail2ban with shorewall, I''m wanting to adjust the fail2ban to work with ultrasurf rules, rules for vfstp, ssh, apache are working well. UltraSurf not 2013/9/11 Tom Eastep <teastep@shorewall.net>> On 09/11/2013 05:49 AM, Joseh-Henrique Cetano de Brito e Silva wrote: > > I''m following a tutorial that shows how to block UltraSurf with > > fail2ban, as there is no information with Shorewall, I''m trying to > > adapt, but this hard for me :-( > > > > put this rule (see below) at start and it did not work > > > > /etc/shorewall/init > > run_iptables-A FORWARD-d 65.49.14.0/24-j <http://65.49.14.0/24-j> LOG - > > log-prefix "= UltraSurf =" - log-level info > > > > PS: I''m following this howto (see below) > > > > > www.dotsharp.com.br/linux/como-fazer-para-bloquear-ultrasurf-solucao-definitiva-iptables-fail2ban.html > > < > http://www.dotsharp.com.br/linux/como-fazer-para-bloquear-ultrasurf-solucao-definitiva-iptables-fail2ban.html > > > > > > Any idea? > > If you do a Google search for ''fail2ban+shorewall'', you will find lots > of helpful articles. > > -Tom > -- > Tom Eastep \ When I die, I want to go like my Grandfather who > Shoreline, \ died peacefully in his sleep. Not screaming like > Washington, USA \ all of the passengers in his car > http://shorewall.net \________________________________________________ > > > > ------------------------------------------------------------------------------ > How ServiceNow helps IT people transform IT departments: > 1. Consolidate legacy IT systems to a single system of record for IT > 2. Standardize and globalize service processes across IT > 3. Implement zero-touch automation to replace manual, redundant tasks > http://pubads.g.doubleclick.net/gampad/clk?id=51271111&iu=/4140/ostg.clktrk > _______________________________________________ > Shorewall-users mailing list > Shorewall-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/shorewall-users > >------------------------------------------------------------------------------ How ServiceNow helps IT people transform IT departments: 1. Consolidate legacy IT systems to a single system of record for IT 2. Standardize and globalize service processes across IT 3. Implement zero-touch automation to replace manual, redundant tasks http://pubads.g.doubleclick.net/gampad/clk?id=51271111&iu=/4140/ostg.clktrk
On 9/12/2013 4:35 PM, Joseh-Henrique Cetano de Brito e Silva wrote:> Thanks for your reply, but I already use fail2ban with shorewall, I''m > wanting to adjust the fail2ban to work with ultrasurf rules, rules for > vfstp, ssh, apache are working well. UltraSurf notTry something like this: DROP net:65.49.14.0/24 all REJECT all net:65.49.14.0/24 -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ How ServiceNow helps IT people transform IT departments: 1. Consolidate legacy IT systems to a single system of record for IT 2. Standardize and globalize service processes across IT 3. Implement zero-touch automation to replace manual, redundant tasks http://pubads.g.doubleclick.net/gampad/clk?id=51271111&iu=/4140/ostg.clktrk