Re: 'mirror' with iptables

To: fadel@ferasoft.com.br
Cc: debian-security@lists.debian.org
Subject: Re: 'mirror' with iptables
From: Eric Veldhuyzen <eric@terra.nu>
Date: Wed, 14 Nov 2001 11:53:54 +0100
Message-id: <[🔎] 20011114115354.H7618@cacao.terra.nu>
In-reply-to: <[🔎] 01111302065601.00381@phadell>; from fadel@siteplanet.com.br on Tue, Nov 13, 2001 at 02:06:56AM -0200
References: <[🔎] 01111302065601.00381@phadell>

On Tue, Nov 13, 2001 at 02:06:56AM -0200, phadell wrote:
> hello there,
> 
> I would like to do a rule that mirror the packets that incoming from a 
> portscanner. 
> The rule must return the packets to the source.  If anyone scan my machine 
> ports, the result will be the list of source address open ports.
> 
> Anyone could help me with this rule?

/sbin/iptables -t filter -A INPUT -j MIRROR -m psd

The psd module is something you'll have to get from the patch-o-matic
from the netfilter sources.

-- 
#!perl #                       Life ain't fair, but root passwords help.
# Eric Veldhuyzen                                       http://terra.nu/
$!=$;=$_+(++$_);($:,$~,$/,$^,$*,$@)=$!=~                 # eric@terra.nu
/.(.)...(.)(.)....(.)..(.)..(.)/;`$^$~$/$: $^$*$@$~ $_>&$;` #Perl Monger

Attachment: pgpb9Rd5JIePz.pgp
Description: PGP signature

Reply to:

References:
- 'mirror' with iptables
  - From: phadell <fadel@siteplanet.com.br>

Prev by Date: 2.4.x boot floppies, was: Vulnerable SSH versions
Next by Date: Re: 2.4.x boot floppies, was: Vulnerable SSH versions
Previous by thread: Re: 'mirror' with iptables
Next by thread: Re: 'mirror' with iptables
Index(es):
- Date
- Thread