Kevin Nunn wrote to All <=-
At first I was having trouble figuring it out but then I started to
grasp the concept again of how iptables type stuff works and got it working. Although I am doing it the opposite of how I probably should, since it only has a few ports forwarded to it, the box should be fine.
This seemed like a better idea than deny everything, block by IP, then permit specific ports (binkd/telnet/vnc/ftp/etc).
DIGIMAUS wrote to KEVIN NUNN <=-
Make sure that the last rule you have is "deny everything". The
firewall won't work right unless you put that rule in.
I originally used that firewall because a particular Russian in Fidonet thought it fun to try to SYN flood me. Stopped him in his tracks.
Well, I don't have that and it seems to be working ok. I'll see as
time goes on. There are only 2 rules right now. a DENY for the IP of
the offending person and a PERMIT for everything else. And that seems
to be working.
I think this guy is coming from russia too, but it's weird and not consistant. Sometimes he'll hit it once, other times he hits it fast
and often. That's when vmodem has a fit.
SEAN DENNIS wrote to KEVIN NUNN <=-
That means your firewall is not working right and allowing everything. Re-read the instructions again as the AIX firewall requires an ending
DENY ALL entry.
From Newsgroup: Micronet.MIN_BBS
SEAN DENNIS wrote to KEVIN NUNN <=-
That means your firewall is not working right and allowing everything. Re-read the instructions again as the AIX firewall requires an ending DENY ALL entry.
But it is working how I want it to work LOL. It is doing what i need it
to do. Which is to block a specific IP only. The system is not open to
the world, only alt telnet port and binkd.
Kev
JAS HUD wrote to KEVIN NUNN <=-
dude if you are connected to the internet you are going to have
hundreds of attackers a day --- Synchronet 3.18b-Win32 NewsLink 1.113
From Newsgroup: Micronet.MIN_BBS
JAS HUD wrote to KEVIN NUNN <=-
dude if you are connected to the internet you are going to have hundreds of attackers a day --- Synchronet 3.18b-Win32 NewsLink 1.113
It's not directly connected to the internet. I have a router that
forwards binkd/telnet port to that box and that is it.
Kev
JAS HUD wrote to KEVIN NUNN <=-
hundreds of attackers a day --- Synchronet 3.18b-Win32 NewsLink 1.113yeah i have a router too.
you're connected to the internet.
From Newsgroup: Micronet.MIN_BBS
JAS HUD wrote to KEVIN NUNN <=-
hundreds of attackers a day --- Synchronet 3.18b-Win32 NewsLink 1.113yeah i have a router too.
you're connected to the internet.
So if I only have telnet and binkd ports forwarded to that box, how am
I going to have hundreds of attackers a day?
Sysop: | StingRay |
---|---|
Location: | Woodstock, GA |
Users: | 41 |
Nodes: | 15 (2 / 13) |
Uptime: | 26:34:41 |
Calls: | 652 |
Calls today: | 3 |
Files: | 792 |
D/L today: |
531 files (712M bytes) |
Messages: | 231,636 |