|
|
lug-bg: iptables
- Subject: lug-bg: iptables
- From: NAbromov@xxxxxxxx (Nikolai Abromov)
- Date: Thu, 8 Aug 2002 10:38:46 +0300
Zdraveyte list,
imam maluk problem s iptables, pisah do iptables@xxxxxxxxxxxxxxxxxxx no oshte ne sa mi otgovorili
zatova reshih da pisha na lug, znachi problema mi e slednia .. pravq si rule izpolzvaiki owner i limit
modula - praviloto izglejda eto taka
-A OUTPUT -m owner ! --uid-owner 0 -m limit ! --limit 1000/second -j DROP
sled koeto si save-am rule-to "/etc/init.d/iptables save active" - spiram go
i pak se opitvam da go pusna , efecta ot puskaneto beshe
Loading iptables ruleset: load "active"iptables-restore v1.2.6a: Bad OWNER UID value `!root'
led koeto reshih da smenq v /var/lib/iptables/active !root s !0 - efetcata beshe sushtia.
vtoria problem koito imam e che v statistikata nevijdam tozi invers koito pravq s ! -- limit 1000/second
tat:
DROP all -- anywhere anywhere OWNER UID match 340 limit: avg 1000/sec burst 5
a izglejda che drop-va packatite koito sa pod 1000 koeto znachi che "!" nesrabotwa , zatova si napravih test i sas
samostoqtelen user no i pri nego se drop-vaha packeti .. seshtam se za nachin po-koito moga da go opravq no
ideqta e da go napisa na edin red tozi rule ako nqkoi e imal podoben problem shte se radvam ako spodeli kak go e opravil
thanks in advance
br,Nikolay Abromov
.
============================================================================
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers).
http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora
To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
============================================================================
|
|
|