Koozali.org: home of the SME Server

Obsolete Releases => SME 7.x Contribs => Topic started by: oddo on July 15, 2006, 09:39:03 PM

Title: automate firewall rule to block specific IPs
Post by: oddo on July 15, 2006, 09:39:03 PM

hi

how to block automaticaly an ip that apears in my /var/log/iptables/current
xyz times in a row

how to defend from DOS
i have 25%+ loss on external conexion
i want to add does ip's to iptables drop list

Thanks in advance! :)

Title: Re: automate firewall rule to block specific IPs
Post by: raem on July 16, 2006, 10:06:31 AM

oddo

> how to defend from DOS

sme limits the number of sessions & concurrent email connections to protect against DOS attacks

Read the features
http://no.longer.valid/phpwiki/index.php/SME%207%20Features
Read the developers guide
http://mirror.contribs.org/smeserver/contribs//gordonr/devguide/html/devguide.html

> i want to add does ip's to iptables drop list

Read the FAQ
http://no.longer.valid/phpwiki/index.php/SME7FAQs#Webx20.Applications

Searching is a good idea too
http://forums.contribs.org/index.php?topic=31443.0

Title: automate firewall rule to block specific IPs
Post by: kruhm on July 17, 2006, 01:15:40 AM

what about blocking specific IP's from emailing? just drop the connection. I could do this with v6 and tcprules but I couldn't find a way or plugin to easily do this with v7 and the qpsmtpd plugins.