Re: Any though of having archlinux-keyring-wkd-sync check for iptables and recommend rule?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] 

On 9/21/23 03:12, Simon Perry wrote:
If you're actively blocking outbound to Hetzner ranges then that is a YOU problem.
No, outbound was fine, it was the INPUT chain block from the 95.216 ranges that got me. I have a top-100 script that dumps the address ranges with the top 100 blocked invalid ssh, smtp, etc.. attempts and those ranges from RIPE, APNIC, and AFRINIC are added to my INPUT chain to drop - that is what also blocked the Arch IPs.
Yes, a bit heavy-handed, but I have no overseas business and this eliminated 99% of the annoying server intrusion attempts. 

--
David C. Rankin, J.D.,P.E.
[Index of Archives]     [Linux Wireless]     [Linux Kernel]     [ATH6KL]     [Linux Bluetooth]     [Linux Netdev]     [Kernel Newbies]     [Share Photos]     [IDE]     [Security]     [Git]     [Netfilter]     [Bugtraq]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Linux ATA RAID]     [Samba]     [Device Mapper]

  Powered by Linux