[wellylug] Blocking bad IPs from server

John Durham johndurh at spunge.org
Fri Jan 26 09:44:33 NZDT 2007


andrej at paradise.net.nz wrote:
> Quoting John Durham <johndurh at spunge.org>:
>
>   
>> iptables -A INPUT -s IP-ADDRESS -j DROP
>>     
>
>   
>> This is limited to one IP at a time (apparently). The page then goes 
>> from this to even more specific (limited) help. Having got the list 
>> already, do you know if some variation of this could be used to apply
>> it?
>>     
> But this is Linux, my friend. :)
>
> for i in `cat list-of-bad-ips`; do iptables -A INPUT -s $i -j DROP; done
>
>
>
> Cheers,
> Andrej
>   
I gather there is some insight in that, but the syntax is unclear at 
best. Is it capable of handling a list contained in a text file? Can it 
distinguish between good or bad access attempts? How effective is it please?

-- 
Regards, John Durham <http://modecideas.com/contact.html?sig>
Fax/Phone 64 4 5286786
Award winning web site at http://modecideas.com?sig
Server hosted on Ubuntu 4.10
PC-HELPERS list subscribe/unsub at http://modecideas.com/discuss.htm?sig
Good advice is like good paint- it only works if applied. 




More information about the wellylug mailing list