On Tue, Aug 17, 1999 at 08:12:20PM -0500, Travis McLane wrote:
> I need to ban an ip from my machine using ipchains. Is there a way to
> do this?
Piece of cake. Run:
/sbin/ipchains -A input -j REJECT -s banned_host_name_or_addr
If you add "-l" then the rejected packets will be syslogged.
The chains are lost when you reboot. To make it permanent, you
may want to add it to /etc/rc.local. (Although I recommend using
a host address rather than name, if you do.)
(The problem with doing ipchains in rc.local is there is a
window of vulnerability after the network comes up. In this
situation, I don't think that's a big problem.)
--
Chip Rosenthal * Unicom Systems Development http://www.unicom.com/
Has your mail server been spamproofed? http://mail-abuse.org/tsi/
Outlaw junk email * Support CAUCE http://www.cauce.org/
"Sure it's working, but couldn't you shine it up some?"
---------------------------------------------------------------------------
Send administrative requests to [EMAIL PROTECTED]
