On Mon, 16 May 2005, [ISO-8859-2] Łukasz Hejnak wrote:
But as for the recent module itself it's a werid one, cause it looks like my iptables don't accept lines like
`iptables -m recent ... -m recent ...`
I mean no matter what I put after the second -m recent, it get's rejected with a 'Unknown arg' msg, altrough the first one works fine :\
Can't figure this one out, anybody has an idea?
Stick with one "-m recent".
Instead of this:
iptables -A SSH_Brute_Force -m recent --name SSH ! --rcheck --seconds 60 \ -m recent --hitcount 4 --set--name SSH -j RETURN
try this:
iptables -A SSH_Brute_Force -m recent --name SSH ! --update --seconds 60 --hitcount 4 -j RETURN
I think that might be what the OP intended.
