--- Frank Wiles wrote:
On Sat, 30 Apr 2005 21:52:02 -0700 (PDT) Jack quiet_celt@yahoo.com wrote:
... I'm looking
solution to reduce the attacks. The box is a "busy box", that is running several services. It runs
The best way to lock out these attackers is to simply use iptables to block their IPs from accessing your system. It doesn't prevent a DoS on your available bandwidth, but it keeps them from bugging your system. I'm not sure why this hasn't been suggested before.
I have about half of the addresses blocked, but what is the impact of adding 150 ip addresses to iptables with potentially hundreds more over time? At what point will iptables eat up all my bandwidth in blocking addresses?
Thanks everyone for the suggestions.
Brian D.
__________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com