Hi On Sat, Feb 17, 2007 at 11:17:19PM +0100, Patrick Matthäi wrote: > The problem is for example, that today some kiddies ( sshd bruteforcer ) > tried to brute many vservers in our company. > Normaly I would set the attackers IP at the hostsystem with iptables to > DROP, but this works only with the hostsystem and "manualy added IPs (to > vservers)". > The IP that I give as argument to newvserver disappears completly from > the hostsystem, so that I can't set DROP rules for example to this IP.
Well I'm pretty sure that you can as I have such rules myself. > Example of a vserver: > Main IP: 192.168.0.4 > Second IP: 192.168.0.5 > > If I set now a DROP rule, it will have only an effect on the second IP ( > which I added manualy ), so the hacker can't connect to 192.168.0.5 but > to 192.168.0.4! How do your iptables rules look like? I'm pretty sure that it works if you just give the correct arguments. Regards, // Ola > -- --------------------- Ola Lundqvist --------------------------- / [EMAIL PROTECTED] Annebergsslingan 37 \ | [EMAIL PROTECTED] 654 65 KARLSTAD | | +46 (0)54-10 14 30 +46 (0)70-332 1551 | | http://opalsys.net/ UIN/icq: 4912500 | \ gpg/f.p.: 7090 A92B 18FE 7994 0C36 4FE4 18A1 B1CF 0FE5 3DD9 / --------------------------------------------------------------- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]