Hello, List!
I am trying to use the 'recent' module on an otherwise working
installation.
(trying to prevent lots of logs from brute force ssh attancks)
I am doing this:
$IPT --table filter --append FORWARD \
--destination $DMZ \
--in-interface $EXT_PPP_IF \
--out-interface $DMZ_IF \
--protocol tcp \
--destination-port $SSH_PORT \
--match recent \
--name sbfa \
--rcheck \
--hitcount 5 \
--seconds 60 \
--jump ld && echo OK
$IPT --table filter --append FORWARD \
--destination $DMZ \
--in-interface $EXT_PPP_IF \
--out-interface $DMZ_IF \
--protocol tcp \
--destination-port $SSH_PORT \
--match state \
--state NEW \
--match recent \
--name sbfa \
--set \
--jump la && echo OK
So syntax seems to be... OK ;-), but I can't log in from the
outside.
Is there something obvious I am missing ? (I guess there is ;-)
