Pascal Hambourg wrote: > Hello, > > J. Bakshi a écrit : > >> iptables -A INPUT -m recent --name blacklist --rcheck --seconds >> $BLACKLIST_INTERVAL -j DROP >> >> and it is working really well. But is there any way to manage the >> blacklisted ip ? Manage means >> > > man iptables > > >> 1> view the ips which are blacklisted >> > > Read /proc/net/ipt_recent/<name>. > > Great !!!. Thanks a lot. Now I can write a shell script to manage the IPs. >> 2> manually remove an IP from blacklist >> > > Write "-a.b.c.d" into /proc/net/ipt_recent/<name> where a.b.c.d is the > address to remove. You can also write "clear" to flush the list. > > >> 3> manually insert an IP as blacklist >> > > Write "+a.b.c.d" or "a.b.c.d" into /proc/net/ipt_recent/<name> where > a.b.c.d is the address to add or update. > > Warning : ipt_recent may have been renamed xt_recent in recent kernels. > -- > To unsubscribe from this list: send the line "unsubscribe netfilter" in > the body of a message to majordomo@xxxxxxxxxxxxxxx > More majordomo info at http://vger.kernel.org/majordomo-info.html > > -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html