I'm using iptables 1.3.6 on a SUSE 10.1 box - and I just cannot get tarpitting to work. # iptables -A INPUT -p tcp -m tcp --dport 135 -j TARPIT iptables: No chain/target/match by that name Can someone guide me in the right direction, please? Per Jessen, Zurich -- http://www.spamchek.com/ - managed email security. Starting at SFr5/month/user.
On 10/22/06, Per Jessen <per@computer.org> wrote:
I'm using iptables 1.3.6 on a SUSE 10.1 box - and I just cannot get tarpitting to work.
# iptables -A INPUT -p tcp -m tcp --dport 135 -j TARPIT iptables: No chain/target/match by that name
Can someone guide me in the right direction, please?
Your iptables syntax looks correct, except that I dunno the "TARPIT" target, so I am not sure if loading tcp module is correct for tarpitting. i.e. I am not sure that you must use "-p tcp" and "-m tcp" <- is the "tcp" module-name correct? Please readme about this specific module.
On Sunday 22 October 2006 11:12, Per Jessen wrote:
I'm using iptables 1.3.6 on a SUSE 10.1 box - and I just cannot get tarpitting to work.
# iptables -A INPUT -p tcp -m tcp --dport 135 -j TARPIT iptables: No chain/target/match by that name
Can someone guide me in the right direction, please?
Its not in the normal iptables build. TARPIT target is in patch-o-matic (extra section). So you have to download and install it. 1. install patch-o-matic (see README) 2. rebuild your kernel from sources that got patched 3. build iptables -- _____________________________________ John Andersen
John Andersen wrote:
On Sunday 22 October 2006 11:12, Per Jessen wrote:
I'm using iptables 1.3.6 on a SUSE 10.1 box - and I just cannot get tarpitting to work.
# iptables -A INPUT -p tcp -m tcp --dport 135 -j TARPIT iptables: No chain/target/match by that name
Can someone guide me in the right direction, please?
Its not in the normal iptables build. TARPIT target is in patch-o-matic (extra section). So you have to download and install it.
1. install patch-o-matic (see README) 2. rebuild your kernel from sources that got patched 3. build iptables
Thanks John - I'll give that a go. It didn't seem obvious that the plain 1.3.6 tarball would not have everything. Guess I need to RTFM. Per Jessen, Zurich -- http://www.spamchek.com/ - managed email security. Starting at SFr5/month/user.
Per Jessen wrote:
Its not in the normal iptables build. TARPIT target is in patch-o-matic (extra section). So you have to download and install it.
1. install patch-o-matic (see README) 2. rebuild your kernel from sources that got patched 3. build iptables
Thanks John - I'll give that a go. It didn't seem obvious that the plain 1.3.6 tarball would not have everything. Guess I need to RTFM.
I think I have retrieved the latest patch-o-matic from ftp.netfilter.org - patch-o-matic-ng-20061006.tar.bz2 - all the later ones are empty. "./runme pending" applies nothing. "./runme base" offers a few new extensions, but nothing I need. So - nothing added nor patched. I've already asked the question on the netfilter list, but just in case you had more suggestions, John? Per Jessen, Zurich -- http://www.spamchek.com/ - managed email security. Starting at SFr5/month/user.
Per Jessen wrote:
I've already asked the question on the netfilter list, but just in case you had more suggestions, John?
For others - you need to run "./runme extra". Per Jessen, Zurich -- http://www.spamchek.com/ - managed email security. Starting at SFr5/month/user.
On Monday 23 October 2006 02:12, Per Jessen wrote:
Per Jessen wrote:
I've already asked the question on the netfilter list, but just in case you had more suggestions, John?
For others - you need to run "./runme extra".
Sorry I didn't see your question until you posted the answer Per, timezones work against us here. -- _____________________________________ John Andersen
participants (3)
-
Alexey Eremenko -
John Andersen -
Per Jessen