[CentOS] Re: IPTables Blocking Brute Forcers

Sarunas Vancevicius svan at redbrick.dcu.ie
Tue Nov 21 10:05:12 UTC 2006

On 07:09, Fri 17 Nov 06, Sudev Barar wrote:
> >You can use IPTables to limit the rate of connections.  I allow only 2
> >connections from a given IP address within each 3 minute period.
> I know this is sloppy and lazy but can you post your iptables line
> that does this?

Something like:

# Don't have a limit on my_trusted_domain 
iptables -A INPUT -p tcp -s my_trusted_domain.org --dport 22 -j ACCEPT

# Don't have a limit the internal net 
iptables -A INPUT -p tcp -s internal_net --dport 22 -j ACCEPT

iptables -A INPUT -p tcp --dport 22 -m limit --limit 2/minute --limit-burst 1 -j ACCEPT
iptables -A INPUT -p tcp --dport 22 -j REJECT --reject-with tcp-reset

Search iptables manual page for limit :).


More information about the CentOS mailing list