<div>
And you will need to remove the last rule in INPUT, just to keep the rules clean.
</div>


And you will need to remove the last rule in INPUT, just to keep the rules clean.

<div>
Thanks, WizRd<br />
<br />
I am going to assume that your solution will work! &nbsp;
</div>


Thanks, WizRd

I am going to assume that your solution will work!  

<div>
<div class="content wysiwyg-content">
I have iptables running on a CENTOS 4.5 server. &nbsp;I am getting significant requests for &quot;CONNECT&quot; from a Chinese friend that I would like to have go away. &nbsp;I have added <br />
-A INPUT -s 122.126.0.0/16 -j DROP &nbsp;<br />
<br />
But I keep seeing the 122.126.x.x ips showing up in the logs -- is there perhaps something wrong with the instruction?<br />
<br />
I found in the database an answer that suggested<br />
iptables -I INPUT -j DROP -p tcp -s 0.0.0.0/0 --dport 80 -m string --string &quot;SEARCH&quot;<br />
<br />
Would CONNECT do the same thing -- I am assuming that because &quot;he&quot; keeps getting in that he is masking the true ip address<br />
<br />
thanks
</div>
</div>


I have iptables running on a CENTOS 4.5 server.  I am getting significant requests for "CONNECT" from a Chinese friend that I would like to have go away.  I have added 
-A INPUT -s 122.126.0.0/16 -j DROP  

But I keep seeing the 122.126.x.x ips showing up in the logs -- is there perhaps something wrong with the instruction?

I found in the database an answer that suggested
iptables -I INPUT -j DROP -p tcp -s 0.0.0.0/0 --dport 80 -m string --string "SEARCH"

Would CONNECT do the same thing -- I am assuming that because "he" keeps getting in that he is masking the true ip address

thanks

IPTABLES and blocking access

The Linux operating system, in all its flavors, has its own share of security flaws that allow intrusions, but there are various mechanisms by which these flaws can be removed, generally divided into two parts: authentication and access control. Authentication is responsible for ensuring that a user requesting access to the system is really the user with the account, while access control is responsible for controlling which resources each account has access to and what kind of access is permitted.

Linux Security

Security is the protection of information systems from theft or damage to the hardware, the software, and the information on them, as well as from disruption or misdirection of the services they provide. The main goal of security is protecting assets, and an asset is anything of value and worthy of protection.  Information Security is a discipline of protecting information assets from threats through safeguards to achieve the objectives of confidentiality, integrity, and availability or CIA for short. On the other hand, disclosure, alteration, and disruption (DAD) compromise the security objectives.

Security

Linux is a UNIX-like open source operating system with hundreds of distinct distributions, including: Fedora, openSUSE, Ubuntu, Debian, Slackware, Gentoo, CentOS, and Arch Linux. Linux is generally associated with web and database servers, but has become popular in many niche industries and applications.