<snip> from /var/lib/shorewall/.iptables-restore-input file line 131 is '--name SSH -j ACCEPT' below
-A Reject -p 6 -m multiport --dports 135,139,445 -j reject -A Reject -p 17 --dport 1900 -j DROP -A Reject -p 6 -j dropNotSyn -A Reject -p 17 --sport 53 -j DROP -A SSHKnock -p tcp --dport 22 -m recent --rcheck --seconds 60 --name SSH -j ACCEPT -A SSHKnock -p tcp --dport 1599 -m recent --name SSH --remove -j DROP -A SSHKnock -p tcp --dport 1600 -m recent --name SSH --set -j DROP -A SSHKnock -p tcp --dport 1601 -m recent Mike ------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/ _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
