Re: [CentOS] iptables rules to limit attack, connlimit

2009-02-27 Thread Sergej Kandyla
Kai Schaetzl пишет: There are numerous tutorials out there how to use ratelimiting. Just google. Kai Does anyone know how to implement some functional provided by patch-o-matic without patching the kernel ? centos5.2 box # iptables -A INPUT -p tcp --syn --dport 80 -m connlimit

[CentOS] iptables rules to limit attack

2009-02-26 Thread chloe K
Hi all ks there iptables rules to limit attack? Thank you - Be smarter than spam. See how smart SpamGuard is at giving junk email the boot with the All-new Yahoo! Mail ___ CentOS mailing list

Re: [CentOS] iptables rules to limit attack

2009-02-26 Thread Bo Lynch
On Thu, February 26, 2009 10:52 am, chloe K wrote: Hi all ks there iptables rules to limit attack? Thank you - Could you give a little more info? Bo Lynch ___ CentOS mailing list CentOS@centos.org

Re: [CentOS] iptables rules to limit attack

2009-02-26 Thread Andrew Hull
chloe K wrote: Hi all ks there iptables rules to limit attack? Thank you Hi, Below is an example that I use to limit the rate of new connections to a particular port/service. You should be able to mold this to work with whatever service you would like to protect. Add the first line

Re: [CentOS] iptables rules to limit attack

2009-02-26 Thread chloe K
Thank you Can I know how to define the SSH_CHECK and white list? I only know to use iptables -A Thank you Andrew Hull l...@racc2000.com wrote: chloe K wrote: Hi all ks there iptables rules to limit attack? Thank you Hi, Below is an example that I use to limit the

Re: [CentOS] iptables rules to limit attack

2009-02-26 Thread Andrew Hull
chloe K wrote: Thank you Can I know how to define the SSH_CHECK and white list? I only know to use iptables -A Thank you Hello, When you're entering the rules from the CLI, the first time you reference a chain, you need to use -N (for new) instead of -A (for append). So, using

Re: [CentOS] iptables rules to limit attack

2009-02-26 Thread Kai Schaetzl
Chloe K wrote on Thu, 26 Feb 2009 13:45:55 -0500 (EST): Can I know how to define the SSH_CHECK and white list? There are numerous tutorials out there how to use ratelimiting. Just google. Kai -- Kai Schätzl, Berlin, Germany Get your web at Conactive Internet Services:

Re: [CentOS] iptables rules to limit attack

2009-02-26 Thread Ned Slider
chloe K wrote: Hi all ks there iptables rules to limit attack? Thank you There are examples using the recent and limit modules on the Wiki (Securing SSH page): http://wiki.centos.org/HowTos/Network/SecuringSSH#head-a296ec93e31637aa349538be07b37f67d836688a It should be easy