Neviete mi nekto vysveltit tento kernel LOG vzdy to loguje po spusteni firewall-u.
Dakujem.
kernel: INPUT drop: IN=eth0 OUT= MAC=00:14:5e:93:16:46:00:15:17:2c:a9:05:08:00 SRC=86.110.21.88 DST=moja ip LEN=48 TOS=0x00 PREC=0x00 TTL=110 ID=33267 DF PROTO=TCP SPT=2883 DPT=445 WINDOW=64240 RES=0x00 SYN URGP=0
kernel: INPUT drop: IN=eth0 OUT= MAC=00:14:5e:93:16:46:00:15:17:2c:a9:05:08:00 SRC=61.157.136.203 DST=moja ip LEN=44 TOS=0x00 PREC=0x00 TTL=100 ID=0 PROTO=TCP SPT=80 DPT=48650 WINDOW=0 RES=0x00 ACK SYN URGP=0
kernel: INPUT drop: IN=eth0 OUT= MAC=00:14:5e:93:16:46:00:15:17:2c:a9:05:08:00 SRC=88.103.198.228 DST=moja ip LEN=40 TOS=0x00 PREC=0x00 TTL=113 ID=10211 PROTO=UDP SPT=1647 DPT=27915 LEN=20
... dalsie
Kernel LOG - hlasky
Pre pridávanie komentárov sa musíte prihlásiť.
inetnum: 86.110.16.0 - 86.110.28.255
netname: ARCTEL-NETWORK3
descr: Arctel clients networks
country: RU
admin-c: ARCR-RIPE
tech-c: ARCR-RIPE
status: ASSIGNED PA
mnt-by: ARCTEL-MNT
source: RIPE # Filtered
role: Arctel Contact Role
address: Profsoyuznaya,56
mnt-by: ARCTEL-MNT
e-mail: abuse@arctel.ru
admin-c: VVV9-RIPE
tech-c: VVV9-RIPE
nic-hdl: ARCR-RIPE
source: RIPE # Filtered
% Information related to '86.110.0.0/19AS34034'
route: 86.110.0.0/19
descr: RU-ARCTEL BLOCK
origin: AS34034
mnt-by: ARCTEL-MNT
source: RIPE # Filtered
$IPTABLES -A INPUT -s 79.116.33.222 -j DROP
alebo. 79-116-33-222.rdsnet.ro a ako by sa dal blokovat komplet provider toho pripojenia cize "rdsnet.ro " .
A chcem sa este opytat ci nepoznate nejaku databazu "blacklist ip" na blokovanie nebezpecnych IP (RU, CN, TH atd... ), google nieco nasiel ale aj tak nic moc.
Dakujem
$IPTABLES -A INPUT -s 79.116.33.222 -j DROP
alebo. 79-116-33-222.rdsnet.ro a ako by sa dal blokovat komplet provider toho pripojenia cize "rdsnet.ro " .
A chcem sa este opytat ci nepoznate nejaku databazu "blacklist ip" na blokovanie nebezpecnych IP (RU, CN, TH atd... ), google nieco nasiel ale aj tak nic moc.
Dakujem