Re: fail2ban for apache2
On Tuesday 12 November 2019 16:04:07 tomas@tuxteam.de wrote:
> On Tue, Nov 12, 2019 at 12:40:45PM -0500, Gene Heskett wrote:
>
> [...]
>
> > So I have to find all that in the history and re-invent
> > a 33 line filter DROP. I'll be baqck when I've stuck a hot tater in
> > semrushes exit port.
>
> See iptables-save (will dump the currently active iptables to a file)
> and iptables-restore (will read that file to set up iptables).
>
Oh goody and I get to name & pick the file and its location. Now, wheres
a good place to put the restore in the reboot path? Make rc.local
executable and put it there?
I am amazed that as long as iptables has been around, that it has no
reserved storage for these rules in /etc, and that I had to create a
directory for it.
All that has been done. And shorewall purged.
Thanks Tomas.
> Cheers
> -- tomás
Cheers, Gene Heskett
--
"There are four boxes to be used in defense of liberty:
soap, ballot, jury, and ammo. Please use in that order."
-Ed Howdershelt (Author)
If we desire respect for the law, we must first make the law respectable.
- Louis D. Brandeis
Genes Web page <http://geneslinuxbox.net:6309/gene>
Reply to: