On Apr 22 2007 11:12, Elvir Kuric wrote: > > last night I implemented geoip feature in my firewall. Using geoip I > can protect my firewall from any kind of traffic from particular > countries ( someone call id racism routing ). I am wondering now if > use this patch in combination with other iptables features will this > prevent for example different kind of attacks like dos, unauthorized > logging and so on. But geoip won't help with that. > I know it is impossible to stop all attacks, but we > can maje their results smaller. I think geoip is very good in cases > when you for example know that you are not going to log from Bosnia > just simpli put Bosnian's IPs on black list. In that cast you could just unlock all the IP ranges you will ever log in from. For me that's like 4 addresses only. Should you happen to login from vacation, ssh to your frontend box first. Jan --
