pastebin - collaborative debugging

pastebin is a collaborative debugging tool allowing you to share and modify code snippets while chatting on IRC, IM or a message board.

This site is developed to XHTML and CSS2 W3C standards. If you see this paragraph, your browser does not support those standards and you need to upgrade. Visit WaSP for a variety of options.

pastebin private pastebin - collaborative debugging tool What's a private pastebin?

Posted by frymaster on Sun 25th Nov 01:28
download | new post

  1. #snippet from my iptables script
  2. #somewhere up the top I have:
  3.  
  4. IPTABLES='/sbin/iptables'
  5.  
  6.  
  7. #TCP Packets with state new (SYN) to port 22 are marked with the name ssh_limit (can change to whatever you want)
  8. $IPTABLES -A INPUT -p tcp --dport 22 -i eth0 -m state --state NEW -m recent --name ssh_limit --set
  9.  
  10. #If we've seen 4 of these packets from one IP in a minute, ignore them (silently drop)
  11. $IPTABLES -A INPUT -p tcp --dport 22 -i eth0 -m state --state NEW -m recent --name ssh_limit --update --seconds 60 --hitcount 4 --reap -j IGNORE
  12.  
  13. #...otherwise, let them through
  14. $IPTABLES -A INPUT -p tcp --dport 22 -i eth0 -m state --state NEW -j ACCEPT

Submit a correction or amendment below. (click here to make a fresh posting)
After submitting an amendment, you'll be able to view the differences between the old and new posts easily.

Use syntax highlighting

To highlight particular lines, prefix each line with @@


Remember my settings