Re: Blocking incoming IP address immediately

From: Nico Declerck (Nico.Declerck_at_UGent.be)
Date: 11/30/04

• Next message: Rick Moen: "Re: Debunking the "Linux can't have viruses" myth ..."
• Previous message: sarah chang: "Re: My Linux server got hacked last night -- please help!"
• In reply to: Jeff Franks: "Re: Blocking incoming IP address immediately"
• Next in thread: Jeff Franks: "Re: Blocking incoming IP address immediately"
• Reply: Jeff Franks: "Re: Blocking incoming IP address immediately"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Tue, 30 Nov 2004 09:16:43 +0100

Jeff Franks wrote:
<snip>

> The way I have tested this is to start the firewall and get another person
> to help me by either joining the game or Roger Wilco. Then I try the
> commands. If it were to take effect immediately, I'd expect it to bump
> him
> off of whatever connection he has. It doesn't. Even if I restart the
> iptables service, it continues to let him stay in. Once I restart the
> entire computer (which kills all connections) it will block them. Like I
> mentioned before, this is the second clean build of RedHat that I have
> tried
> this on. On this firewall, I installed RH9, updated relevant rpms
> (including iptables), and setup this script. The OP contains my ENTIRE
> script as of now. ARGH!??!?!?!
 
<snip>

> I am running this from a script called /etc/rc2.d/rc.firewall. All the
> rules show up in the iptables -L list and until I run the rc.firewall
> script, port forwarding does not work. So, I'm confident that it is
> executing correctly. While testing I have been saving my iptables to the
> "permanent" setup using the 'iptables-save > /etc/sysconfig/iptables'
> command. This does the same thing as your rules-save command, i think
> (puts all effective rules in the "system" script). and if I leave the
> /etc/sysconfig/iptables file intact (not removed) when I reboot, the
> firewall automatically starts.

Just one question to be on the safe side... The iptables-firewall and the
"Roger Wilco" game are one and the same machine??? right?

prompt

• Next message: Rick Moen: "Re: Debunking the "Linux can't have viruses" myth ..."
• Previous message: sarah chang: "Re: My Linux server got hacked last night -- please help!"
• In reply to: Jeff Franks: "Re: Blocking incoming IP address immediately"
• Next in thread: Jeff Franks: "Re: Blocking incoming IP address immediately"
• Reply: Jeff Franks: "Re: Blocking incoming IP address immediately"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: IPTABLES ... > I need to setup the firewall IPTABLES on CentOS. ... You set up the firewall using command line commands. ... > allow to acces FROM the LAN only to a computer with MAC ADRESS xxxxxx. ... (comp.os.linux.setup) Re: Odd tcp dump? was: ssh working with dialup, not through router ... and try to run the iptables command you ... debug3: tty_make_modes: 91 1 ... debug1: fd 3 setting TCP_NODELAY ... (Fedora) Re: RPM problem on FC3/x86_64 ... Now it's downloading and upgrades. ... > What's with the command line rpm? ... (Fedora) Re: Ssh/Rsh problems ... Turned out to be the IPTables firewall service ... Modify your IPTables rules or simply switch it off with 'service ... > I am encountering problems with both ssh and rsh, ... > When I attempt to run a command on a remote machine via ssh, ... (comp.os.linux.security) Re: Ethereal ideas - Slightly OT ... >>I have a game server using an iptables firewall. ... >>been able to figure out how to use the single open port to join the game ... >>then he does something that crashes the server app. ... but I'm playing with IPTables for the first time and am actually ... (comp.os.linux.security)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint