Re: How to work with my iptables script

To: debian-firewall@lists.debian.org
Subject: Re: How to work with my iptables script
From: Tom Geissler <Tom@d7031.de>
Date: Mon, 30 Aug 2004 21:17:58 +0200
Message-id: <[🔎] 20040830191758.GA499@d7031.de>
Reply-to: Tom Geissler <Tom@d7031.de>
In-reply-to: <[🔎] 413307CD.7070006@list.idg.dk>
References: <[🔎] 412C2C07.4020806@list.idg.dk> <[🔎] 20040825124019.D19930@planetcobalt.net> <[🔎] 20040825200104.GA1049@d7031.de> <[🔎] 413307CD.7070006@list.idg.dk>

* Jacob Friis Larsen <jfl@list.idg.dk> [30-08-04 12:56]:
> >... and REJECT also UDP traffic with
> >'port-unreachable'
> 
> Can I learn from an example from you?

You can add this as last rules:

iptables -A INPUT -m state --state NEW -j LOG -m limit --limit 3/min

iptables -A INPUT -p tcp -j REJECT 
	--reject-with tcp-reset -m limit --limit 1/sec

iptables -A INPUT -p udp -j REJECT 
	--reject-with icmp-port-unreachable -m limit --limit 1/sec

-- 
Tom

Reply to:

References:
- How to work with my iptables script
  - From: Jacob Friis Larsen <jfl@list.idg.dk>
- Re: How to work with my iptables script
  - From: Ansgar -59cobalt- Wiechers <lists@planetcobalt.net>
- Re: How to work with my iptables script
  - From: Tom Geissler <Tom@d7031.de>
- Re: How to work with my iptables script
  - From: Jacob Friis Larsen <jfl@list.idg.dk>

Prev by Date: Re: How to work with my iptables script
Next by Date: Re: How to work with my iptables script
Previous by thread: Re: How to work with my iptables script
Next by thread: Re: How to work with my iptables script
Index(es):
- Date
- Thread