September 5th, 2005, 06:15 PM
Rules For Firewalls, Or How To Ban A Continent
Couldn't find this posted, so here goes. Feel the power of banning a continent.
[edited for sense -- Japanese site]
Rules For Firewalls
These rules are generated from RIPE LISTS, APNIC LISTS, LACNIC LISTS and ARIN LISTS.
Therefore IP address ranges of these countries [that] are not listed in mentioned LISTS cannot [be] list[ed] [in the rules] below.
As a consequence, note that [. . .] these lists cannot deny all IP-addresses of the above-mentioned countries.
But I think if use this, in almost cases, you can completely deny direct accesses from these countries.
These files are automatically updated around 6 p.m. GMT (7 p.m. CET, 2 a.m. HK/SIN) everyday.
September 5th, 2005, 08:19 PM
know any ways to ban a bump troll?
Windows 9x: n.
A collection of 32 bit extensions and a graphical shell for a 16 bit patch to an 8 bit operating system originally coded for a 4 bit microprocessor. Written by a 2 bit company that can\'t stand 1 bit of competition.
September 5th, 2005, 10:35 PM
what do these lines mean?
iptables -A INPUT -i ppp0 -p all -s 126.96.36.199/15 -j DROP
iptables -A INPUT -i ppp0 -p all -s 188.8.131.52/16 -j DROP
iptables -A INPUT -i ppp0 -p all -s 184.108.40.206/17 -j DROP
iptables -A INPUT -i ppp0 -p all -s 220.127.116.11/17 -j DROP
i can identify the ip address and im assuming DROP is telling the system to drop the packet but aside from that im lost
September 6th, 2005, 03:02 PM
-i is the interface, ppp0 means its a modem,
-p all means all protocols (tcp, udp)
-A is the chain, this means all packets coming into the machine
-s is the source ip address from which those packets come,
-j tells it waht to do if this rule is true (DROP,REJECT,ACCEPT)
check out 'man iptables' for more details.
(kr5kernel at hotmail dot com)
Linux: Making Penguins Cool Since 1994.