No, there is another way. Using the l7filter user-space daemon. You need to NFQUEUE target with IPTABLES and configure de L7 daemon to do the work. I don't use it, but in http://l7-filter.sourceforge.net/HOWTO-userspace there is more information about it. Regards El Mie, 19 de Septiembre de 2007, 9:57, David Hrbác( escribió: > Bazy napsal(a): >> And yes... I will use layer 7 filtering. >> http://l7-filter.sourceforge.net/protocols >> >> Patch my kernel, my iptables, and "iptables -A INPUT -m layer7 --l7proto >> ssh -j DROP" ;) > > Yes, the only way. > D. > _______________________________________________ > CentOS mailing list > CentOS@xxxxxxxxxx > http://lists.centos.org/mailman/listinfo/centos > _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
Re: filtering ssh regardless of the port
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: centos@xxxxxxxxxx
- Subject: Re: filtering ssh regardless of the port
- From: "ArcosCom Linux User" <linux@xxxxxxxxxxxx>
- Date: Wed, 19 Sep 2007 10:57:28 +0200 (CEST)
- Delivered-to: centos@xxxxxxxxxx
- Importance: High
- In-reply-to: <46F0D674.3010605@xxxxxxxxx>
- References: <008501c7fa3d$d894fbe0$7201a8c0@MRSLAPTOP> <46F0D4E0.6070408@xxxxxxxxxxxxxxxxx> <46F0D674.3010605@xxxxxxxxx>
- User-agent: SquirrelMail/1.4.9a-1.3.5
- Follow-Ups:
- Re: filtering ssh regardless of the port
- From: Bazy
- Re: filtering ssh regardless of the port
- References:
- RE: filtering ssh regardless of the port
- From: Jason Pyeron
- Re: filtering ssh regardless of the port
- From: Bazy
- Re: filtering ssh regardless of the port
- From: David Hrbác(
- RE: filtering ssh regardless of the port
- Prev by Date: Re: filtering ssh regardless of the port
- Next by Date: Re: filtering ssh regardless of the port
- Previous by thread: Re: filtering ssh regardless of the port
- Next by thread: Re: filtering ssh regardless of the port
- Index(es):
 |