[wellylug] Blocking bad IPs from server
John Durham
johndurh at spunge.org
Fri Jan 26 09:44:33 NZDT 2007
andrej at paradise.net.nz wrote:
> Quoting John Durham <johndurh at spunge.org>:
>
>
>> iptables -A INPUT -s IP-ADDRESS -j DROP
>>
>
>
>> This is limited to one IP at a time (apparently). The page then goes
>> from this to even more specific (limited) help. Having got the list
>> already, do you know if some variation of this could be used to apply
>> it?
>>
> But this is Linux, my friend. :)
>
> for i in `cat list-of-bad-ips`; do iptables -A INPUT -s $i -j DROP; done
>
>
>
> Cheers,
> Andrej
>
I gather there is some insight in that, but the syntax is unclear at
best. Is it capable of handling a list contained in a text file? Can it
distinguish between good or bad access attempts? How effective is it please?
--
Regards, John Durham <http://modecideas.com/contact.html?sig>
Fax/Phone 64 4 5286786
Award winning web site at http://modecideas.com?sig
Server hosted on Ubuntu 4.10
PC-HELPERS list subscribe/unsub at http://modecideas.com/discuss.htm?sig
Good advice is like good paint- it only works if applied.
More information about the wellylug
mailing list