Hmm.. I didn't spot this one! Thanks this is precisely what I wanted. Cheers,
On 09/01/2008, Carlos E. R. <[EMAIL PROTECTED]> wrote: > -----BEGIN PGP SIGNED MESSAGE----- > > Is there a way to merge the following iptables rules with SuseFirewall? > > > > iptables -A INPUT -p tcp --dport 22 -m recent --set --name ssh --rsource > > iptables -A INPUT -p tcp --dport 22 -m recent ! --rcheck --seconds 60 > > --hitcount 4 --name ssh --rsource -j ACCEPT > > > Did you know about this: ? > > FW_SERVICES_REJECT_EXT="0/0,tcp,113" > # Example: > # Allow max three ssh connects per minute from the same IP address: > # "0/0,tcp,22,,hitcount=3,blockseconds=60,recentname=ssh" > # > # The special value _rpc_ is recognized as protocol and means that dport is > # interpreted as rpc service name. See FW_SERVICES_EXT_RPC for > # details. > # > -- Marcin Floryan http://marcin.floryan.pl/ Please consider the environment before printing this email. -- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
