Len45
asked on
IPTABLES and blocking access
I have iptables running on a CENTOS 4.5 server. I am getting significant requests for "CONNECT" from a Chinese friend that I would like to have go away. I have added
-A INPUT -s 122.126.0.0/16 -j DROP
But I keep seeing the 122.126.x.x ips showing up in the logs -- is there perhaps something wrong with the instruction?
I found in the database an answer that suggested
iptables -I INPUT -j DROP -p tcp -s 0.0.0.0/0 --dport 80 -m string --string "SEARCH"
Would CONNECT do the same thing -- I am assuming that because "he" keeps getting in that he is masking the true ip address
thanks
-A INPUT -s 122.126.0.0/16 -j DROP
But I keep seeing the 122.126.x.x ips showing up in the logs -- is there perhaps something wrong with the instruction?
I found in the database an answer that suggested
iptables -I INPUT -j DROP -p tcp -s 0.0.0.0/0 --dport 80 -m string --string "SEARCH"
Would CONNECT do the same thing -- I am assuming that because "he" keeps getting in that he is masking the true ip address
thanks
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
And you will need to remove the last rule in INPUT, just to keep the rules clean.
ASKER
Thanks, WizRd
I am going to assume that your solution will work!
I am going to assume that your solution will work!