/
Banimento de Port Scans
Banimento de Port Scans
- Flavio E. Goncalves
Owned by Flavio E. Goncalves
May 24, 2018
O Sistema também bane port scans.
-
- log and ban portscans*
$iptables -A INPUT -m recent --name portscan --rcheck --seconds 86400 -j DROP
$iptables -A FORWARD -m recent --name portscan --rcheck --seconds 86400 -j DROP
$iptables -A INPUT -m recent --name portscan --remove
$iptables -A FORWARD -m recent --name portscan --remove
$iptables -A INPUT -p tcp -m tcp --dport 139 -m recent --name portscan --set -j LOG --log-prefix "Portscan:"
$iptables -A INPUT -p tcp -m tcp --dport 139 -m recent --name portscan --set -j DROP
$iptables -A FORWARD -p tcp -m tcp --dport 139 -m recent --name portscan --set -j LOG --log-prefix "Portscan:"
$iptables -A FORWARD -p tcp -m tcp --dport 139 -m recent --name portscan --set -j DROP
- log and ban portscans*
, multiple selections available,