Differences

This shows you the differences between two versions of the page.

--- gnu_linux:iptables:sshguard [2012/11/25 15:44] – created kolan
+++ gnu_linux:iptables:sshguard [2014/09/10 14:30] (current) – kolan
@@ Line 1: / Line 1: @@
 ====== Iptables/Netfilter sshguard ======
-Install [[http://www.sshguard.net | sshguard]] and add rules to netfilter.
+Very good installation guid at the [[http://wiki.gentoo.org/wiki/Sshguard | Gentoo Wiki]] pages.
-<code bash | Netfilter rules example>#!/bin/sh
+<code bash | View Banned List>
+iptables -L sshguard --line-numbers
-/sbin/iptables -N sshguard
+</code>
-/sbin/iptables -A sshguard -m conntrack --ctstate NEW -m recent --name SSH --update --seconds 120 --hitcount 5 -j DROP
-/sbin/iptables -A sshguard -m conntrack --ctstate NEW -m recent --name SSH --set -j ACCEPT
-/sbin/iptables -A sshguard -j ACCEPT
-/sbin/iptables -A INPUT -p tcp --dport 22 -j sshguard</code>