Peter Van den Wildenbergh wrote: >Gustin Johnson wrote: > >># Block more than 3 ssh attempts in 1 minute. >>$IPTABLES -I INPUT -p tcp --dport 22 -i eth0 -m state --state NEW -m >>recent --set >> >>$IPTABLES -I INPUT -p tcp --dport 22 -i eth0 -m state --state NEW -m >>recent --up date --seconds 60 --hitcount 4 -j DROP >> >> Got this working (after I figured out that --update is one word without a space.) However it works on the actual box running the sshd My ultimate goal is to block it on the IpCop box that doesn the NATting and portforwarding to the actual box.
Any more ideas? I am quite happy with this already! Thank you Peter _______________________________________________ clug-talk mailing list [email protected] http://clug.ca/mailman/listinfo/clug-talk_clug.ca Mailing List Guidelines (http://clug.ca/ml_guidelines.php) **Please remove these lines when replying
