> From: "Daniel M." <d...@ekotek.rs>
> To: lfs-support@lists.linuxfromscratch.org
> Date: Mon, 04 Jan 2016 22:58:49 +0100
> Subject: Re: [lfs-support] iptables
>
>
>
> On Mon, 2016-01-04 at 19:05 +0000, William Harrington wrote:
>
> > I looked at your config settings and conntrack is in the kernel for ipv4.
.
.
>
> iptables -N SSH
> iptables -A INPUT -p tcp --dport 22 -m conntrack --ctstate NEW -m
> recent --set --name SSH
> iptables -A INPUT -p tcp --dport 22 -m conntrack --ctstate NEW -m
> recent --update --seconds 60 --hitcount 6 -j DROP --name SSH
>
> Unfortunately still the same error.
>
Per William's note, include '-v' in those cmdlines; but please do
copy'n'paste the error message(s), and specify which command(s) they are
a result of.
Does your firewall work ok otherwise - without any of the above commands?
akh
--
--
http://lists.linuxfromscratch.org/listinfo/lfs-support
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page
Do not top post on this list.
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
A: Top-posting.
Q: What is the most annoying thing in e-mail?
http://en.wikipedia.org/wiki/Posting_style
