: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Bazy
Sent: Tuesday, September 18, 2007 16:23
To: CentOS mailing list
Subject: [CentOS] filtering ssh regardless of the port
Hello gentlemen and lady's,
I am trying to filter ssh traffic regardless of the port the
connection
No, there is another way.
Using the l7filter user-space daemon.
You need to NFQUEUE target with IPTABLES and configure de L7 daemon to do
the work.
I don't use it, but in http://l7-filter.sourceforge.net/HOWTO-userspace
there is more information about it.
Regards
El Mie, 19 de Septiembre de
ArcosCom Linux User wrote:
No, there is another way.
Using the l7filter user-space daemon.
You need to NFQUEUE target with IPTABLES and configure de L7 daemon to do
the work.
I don't use it, but in http://l7-filter.sourceforge.net/HOWTO-userspace
there is more information about it.
David Hrb?c( [EMAIL PROTECTED] wrote:
Bazy napsal(a):
And yes... I will use layer 7 filtering.
http://l7-filter.sourceforge.net/protocols
Patch my kernel, my iptables, and iptables -A INPUT -m layer7 --l7proto
ssh -j DROP ;)
Yes, the only way.
D.
Silly question. If you're just
David G. Miller wrote:
David Hrb?c( [EMAIL PROTECTED] wrote:
Bazy napsal(a):
And yes... I will use layer 7 filtering.
http://l7-filter.sourceforge.net/protocols
Patch my kernel, my iptables, and iptables -A INPUT -m layer7
--l7proto
ssh -j DROP ;)
Yes, the only way.
D.
, September 18, 2007 16:23
To: CentOS mailing list
Subject: [CentOS] filtering ssh regardless of the port
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hello gentlemen and lady's,
I am trying to filter ssh traffic regardless of the port the
connection
is opened on. I want to do the same
Bazy wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hello gentlemen and lady's,
I am trying to filter ssh traffic regardless of the port the
connection
is opened on. I want to do the same for rlogin and telnet. I know it
would be easier to use a proxy server and only allow
7 matches
Mail list logo
