# Usa lo siguiente para bloquear el escaneo de puertos en CentOS.
# flooding of RST packets, smurf attack Rejection
iptables -A INPUT -p tcp -m tcp --tcp-flags RST RST -m limit --limit 2/second --limit-burst 2 -j ACCEPT
# Protecting portscans
# Attacking IP will be locked for 24 hours (3600 x 24 = 86400 Seconds)
iptables -A INPUT -m recent --name portscan --rcheck --seconds 600 -j DROP
iptables -A FORWARD -m recent --name portscan --rcheck --seconds 600 -j DROP
# Remove attacking IP after 24 hours
iptables -A INPUT -m recent --name portscan --remove
iptables -A FORWARD -m recent --name portscan --remove
# These rules add scanners to the portscan list, and log the attempt.
iptables -A INPUT -p tcp -m tcp --dport 139 -m recent --name portscan --set -j LOG --log-prefix "portscan:"
iptables -A INPUT -p tcp -m tcp --dport 139 -m recent --name portscan --set -j DROP
iptables -A FORWARD -p tcp -m tcp --dport 139 -m recent --name portscan --set -j LOG --log-prefix "portscan:"
iptables -A FORWARD -p tcp -m tcp --dport 139 -m recent --name portscan --set -j DROP
Suscribirse a:
Enviar comentarios (Atom)
-
Pi, Pi Network and the Pi logo are trademarks of the Pi Community Company. Our webpage, LatinChain Platform: https://latin-chain.com Latin... -
DONATE HERE, OPTIONAL (DONA AQUÍ, OPCIONAL): https://dev-rockcesar.blogspot.com/2025/03/donations-to-latinchain.html?m=1 Documento (Españo... -
OpenSource Expert 🇻🇪 Sígueme en mis Redes Sociales (Follow me in my Social Networks): Redes Sociales: Youtube 📺: https://youtube.com/...
No hay comentarios:
Publicar un comentario