James B. Byrne wrote: > Chain RH-Firewall-1-INPUT (2 references) > num target prot opt source destination > 1 DROP all -- 202.14.0.0/24 anywhere > 2 DROP all -- 220.232.0.0/24 anywhere > Jan 12 13:36:02 inet01 sshd[16056]: Received disconnect from > 220.232.152.137: 11: Bye Bye > What is wrong with my IPTABLES rules that this connection is permitted? Seems that your subnet masks are not correct Try /16 instead of /24 if you really want to block the last two octets. nate _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
Re: Intrusion Attempt Prevension - iptables problems
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: centos@xxxxxxxxxx
- Subject: Re: Intrusion Attempt Prevension - iptables problems
- From: "nate" <centos@xxxxxxxxxxxxxxxx>
- Date: Mon, 12 Jan 2009 10:47:17 -0800 (PST)
- Delivered-to: centos@xxxxxxxxxx
- Importance: Normal
- In-reply-to: <41347.216.185.71.24.1231785478.squirrel@xxxxxxxxxxxxxxxxxxxxx>
- References: <41347.216.185.71.24.1231785478.squirrel@xxxxxxxxxxxxxxxxxxxxx>
- User-agent: SquirrelMail/1.4.9a
- References:
- Intrusion Attempt Prevension - iptables problems
- From: James B. Byrne
- Intrusion Attempt Prevension - iptables problems
- Prev by Date: Re: Intrusion Attempt Prevension - iptables problems
- Next by Date: (Semi-OT) Problems with Firefox
- Previous by thread: Re: Intrusion Attempt Prevension - iptables problems
- Next by thread: Re: Intrusion Attempt Prevension - iptables problems
- Index(es):
 |