(no subject)
Vito Sansevero
vsansevero@linksys.com
Thu, 09 Aug 2001 14:58:00 -0700
--------------ED68F621305289F7248F1E25
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
I did a little bash script that pulled the ports out of a text file, I
listed the ports on one line
i.e.
21
22
23
24
25
etc
then I call the file like so.
DENIED_PORTS_TCP = "/etc/firewall-scripts/ports-tcp"
for PORT in $DENIED_PORTS_TCP; do
$IPTABLES -A DENY_PORTS -p tcp --dport $PORT -m limit --limit 5/minute \
-j LOG --log-level $LOG_LEVEL --log-prefix "DENIED PORT:"
done
--
.^. .---------------------------------------------------------.
/V\ | Vito Sansevero - Linux Network Admin - www.linksys.com |
/( )\ | vsansevero@linksys.com |
^^-^^ '---------------------------------------------------------'
Open Source is a philosophy not a price tag!
--------------ED68F621305289F7248F1E25
Content-Type: text/html; charset=us-ascii
Content-Transfer-Encoding: 7bit
<!doctype html public "-//w3c//dtd html 4.0 transitional//en">
<html>
I did a little bash script that pulled the ports out of a text file, I
listed the ports on one line
<p>i.e.
<br>21
<br>22
<br>23
<br>24
<br>25
<br>etc
<br>then I call the file like so.
<p>DENIED_PORTS_TCP = "/etc/firewall-scripts/ports-tcp"
<p>for PORT in $DENIED_PORTS_TCP; do
<br>$IPTABLES -A DENY_PORTS -p tcp --dport $PORT -m limit --limit 5/minute
\
<br>-j LOG --log-level $LOG_LEVEL --log-prefix "DENIED PORT:"
<br>done
<br>
<br>
<pre>--
.^. .---------------------------------------------------------.
/V\ | Vito Sansevero - Linux Network Admin - www.linksys.com |
/( )\ | vsansevero@linksys.com |
^^-^^ '---------------------------------------------------------'
Open Source is a philosophy not a price tag!</pre>
</html>
--------------ED68F621305289F7248F1E25--