On Fri, Mar 01, 2002 at 05:16:36PM -0300, Roberto Campos wrote: > Hi, > > I've been listennig the list for the last 3 months and > i'm using iptables, ip, tc, etc... and learning to love it. > > Now i've read about an experimental netfilter "psd" that needs > a patch and that can detect inbound port scans with rules like: > > iptables -t nat -A PREROUTING -i eth0 -d x.x.x.x -m psd -j DROP > > Than i see "iplimit" (-m iplimit) also experimental and the best > one is that patch that allows us to filter based in the content > of the packet (-m string). The iptables people a very good list, see about it on http://www.netfilter.org/ I would gladly help you, but I just don't know - the people there do. Regards, bert -- http://www.PowerDNS.com Versatile DNS Software & Services http://www.tk the dot in .tk http://lartc.org Linux Advanced Routing & Traffic Control HOWTO
