You are not logged in.
Hello, Sir
The iptables is a very very important package in Linux. It has lots of syntax. Please add it.
Tom
Offline
good idea, I have added a man page for nft (nftables the newer version of iptables)
https://ss64.com/bash/nft.html
Offline
Great work! Much appreciate that! I have created some iptables rule examples on my Github, which might be good examples for beginners. But, can you make some examples for the iptables extension of hashlimit?
For example, the rule to prevent brute force ssh attack.
sudo iptables -A INPUT -i eth0 -m tcp --protocol tcp --dport 22 -m hashlimit --hashlimit-above 1/min --hashlimit-mode srcip --hashlimit-name SSH -m state --state NEW -j REJECT
or
sudo iptables -A INPUT -i eth0 -m tcp --protocol tcp --dport 22 -m hashlimit --hashlimit-above 1/min --hashlimit-mode srcip --hashlimit-name SSH -m state --state NEW -j DROP
Thanks
- Tom
Last edited by tomhsiung (24 May 2019 16:11)
Offline
And add a diagram for iptables chains.
Offline
Im travelling at the moment but will see what I can do when Im back, could you post a link to your Github, Thanks
Simon
Offline
Hello, Simon
My Github homepage is at https://github.com/TomHsiung
and I have several programs, including the one for iptables rule collection.
At last, thank you for building the ss64 websites, it is really wonderful for Linux and Unix beginners. I really want to make contribution to these great websites.
Tom
Last edited by tomhsiung (28 May 2019 12:10)
Offline