Mailinglist Archive: opensuse-security (228 mails)

< Previous Next >
Re: [suse-security] reject an IP with Apache2 and Suse Firewall.
  • From: "Johannes B. Ullrich" <jullrich@xxxxxxxxxxxxx>
  • Date: Mon, 14 Mar 2005 07:25:09 -0500
  • Message-id: <423582A5.4020201@xxxxxxxxxxxxx>
Andrei Bintintan wrote:
It works,
How can I also log these drops???

just add a 'LOG' line ahead of the 'DROP'. The dropped packets will be logged in /var/log/messages

BLACKLIST="A.B.C.D E.F.G.H X.Y.Z.0/24"
for net in $BLACKLIST; do
iptables -A INPUT -s $net -j LOG
iptables -A INPUT -s $net -j DROP
done


< Previous Next >