4 069
contributi
Impostare un firewall con uno script iptables: differenze tra le versioni
Impostare un firewall con uno script iptables (visualizza wikitesto)
Versione delle 14:13, 17 apr 2011
, 17 apr 2011→Lo script
| Riga 132: | Riga 132: | ||
$IPT -N syn-flood | $IPT -N syn-flood | ||
$IPT -A INPUT -i $IFACE -p tcp syn -j syn-flood | $IPT -A INPUT -i $IFACE -p tcp --syn -j syn-flood | ||
$IPT -A syn-flood -m limit limit 1/s limit-burst 4 -j RETURN | $IPT -A syn-flood -m limit --limit 1/s --limit-burst 4 -j RETURN | ||
$IPT -A syn-flood -j DROP | $IPT -A syn-flood -j DROP | ||
$IPT -A INPUT -p tcp ! --syn -m state --state NEW -j DROP | $IPT -A INPUT -p tcp ! --syn -m state --state NEW -j DROP | ||