Why not use the GEOIP IPTABLES patch and then just use this in your firewall:
-----------------------------------------------------------------------------------------
$IPTABLES -A INPUT -p tcp -m geoip --src-cc CN -j DROP
$IPTABLES -A INPUT -p tcp -m geoip --src-cc KR -j DROP
$IPTABLES -A INPUT -p tcp -m geoip --src-cc TW -j DROP
$IPTABLES -A INPUT -p tcp -m geoip --src-cc HK -j DROP
-----------------------------------------------------------------------------------------
This way you have 4 simple rules which do the work of that entire script.
On 10/10/05, Taka John Brunkhorst <[EMAIL PROTECTED]> wrote:
nice but why do we need to block them?
ssh worms? or just lamers?
--
[EMAIL PROTECTED]
Taka John Brunkhorst
