[CentOS] filtering ssh regardless of the port

ArcosCom Linux User linux at arcoscom.com
Wed Sep 19 08:57:28 UTC 2007

No, there is another way.
Using the l7filter user-space daemon.

You need to NFQUEUE target with IPTABLES and configure de L7 daemon to do
the work.

I don't use it, but in http://l7-filter.sourceforge.net/HOWTO-userspace
there is more information about it.


El Mie, 19 de Septiembre de 2007, 9:57, David Hrbác( escribió:
> Bazy napsal(a):
>> And yes... I will use layer 7 filtering.
>> http://l7-filter.sourceforge.net/protocols
>> Patch my kernel, my iptables, and "iptables -A INPUT -m layer7 --l7proto
>> ssh -j DROP" ;)
> Yes, the only way.
> D.
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> http://lists.centos.org/mailman/listinfo/centos

More information about the CentOS mailing list