iptables recent / more than one exception
Reindl Harald
h.reindl at thelounge.net
Thu May 3 14:21:20 UTC 2012
is there any way to specify here more than one source-address
(the usual comma seperated way does not work in this context)
a complete ACCEPT before is no solution because it would bypass
any selective ACCEPT-rule
iptables -I INPUT -p tcp -i eth0 ! -s $LOCAL_NETWORK -m state --state NEW -m recent --set
iptables -I INPUT -p tcp -i eth0 ! -s $LOCAL_NETWORK -m state --state NEW -m recent --update --seconds 1 --hitcount
75 -j REJECT --reject-with tcp-reset
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 262 bytes
Desc: OpenPGP digital signature
URL: <http://lists.fedoraproject.org/pipermail/users/attachments/20120503/4cf0654d/attachment.sig>
More information about the users
mailing list