Install conntrack-tools and flush the table that keeps track of your connections.
*Debian Flavors:* #apt-get install conntrack *RedHat Flavors:* #yum install conntrack-tools Then: #conntrack -F On Tue, Sep 6, 2016 at 2:01 PM, Grant <[email protected]> wrote: > My site was recently under attack by an IP address I identified by way > of the nginx logs. I tried blocking the IP like this which has always > worked in the past: > > /etc/shorewall/rules > DROP net:1.2.3.4 $FW > > But this time it seemed to have no effect as the IP kept racking up > hits in the nginx log. Shorewall runs on the same machine as my web > server. Could shorewall/iptables somehow see a different IP address > than the one seen and logged by nginx? > > - Grant > > ------------------------------------------------------------ > ------------------ > _______________________________________________ > Shorewall-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/shorewall-users >
------------------------------------------------------------------------------
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
