Prihlásiť sa Odoslať Novinky :: FAQ :: Rozšírené vyhľadávanie :: Napísali o nás :: Ankety
Main Menu
· Home
· 
· FAQ
· 
· Diskusia
· 
Main Menu
· Domov

Moduly
· AvantGo
· Downloads
· FAQ
· News
· Recommend Us
· Reviews
· Search
· Sections
· Stats
· Topics
· Top List
· Web Links
· Forum
Jazyk
Výber jazykovej mutácie:

FAQ  •  Search  •  Register  •  Log in to check your private messages
Log in  •  Maximize
The time now is 24.04.2024 - 00:18

SKFREE Forum Index » Mikrotik™ Podpora » Mikrotik™ Podpora

Skript na blokovanie IP?

Post new topic Reply to topic
View previous topic Printable version Log in to check your private messages View next topic
 
Author Message
Guest
Post subject: Skript na blokovanie IP?  PostPosted: 19.04.2006 - 17:03 #34212






Zdravim,

je tu niekto sikovny co by vedel napisat alebo ma skript ktory by blokoval (postupne pridaval do firewall rules/DROP) IP ktore napr. 3x po sebe zadali nespravne heslo pri SSH alebo FTP login-e?

Totiz hromadia sa mi taketo pokusy (niekedy 1-2, niektore IP sa snazia aj 50+ krat) a manualne zadavanie sice ide ale chcelo by to nieco automaticke ak nahodou zmeni IP.

Dik vopred!
 
   
Reply with quote Back to top
Chalan
Post subject: RE: Skript na blokovanie IP?  PostPosted: 19.04.2006 - 19:24 #34215
Majster


Joined: Máj 12, 2004
Posts: 4579
Location: Bratislava
tzv blacklist...
 
 View user's profile Send private message Visit poster's website MSN Messenger ICQ Number 
Reply with quote Back to top
fixi
Post subject: Skript na blokovanie IP?  PostPosted: 19.04.2006 - 20:15 #34217
Basic


Joined: Sep 13, 2005
Posts: 267
Location: Bratislava
Anonymous wrote: ›Zdravim,

je tu niekto sikovny co by vedel napisat alebo ma skript ktory by blokoval (postupne pridaval do firewall rules/DROP) IP ktore napr. 3x po sebe zadali nespravne heslo pri SSH alebo FTP login-e?

Totiz hromadia sa mi taketo pokusy (niekedy 1-2, niektore IP sa snazia aj 50+ krat) a manualne zadavanie sice ide ale chcelo by to nieco automaticke ak nahodou zmeni IP.

Dik vopred!

popozeraj sa po niecom takom ako ipt_recent do iptables
 
 View user's profile Send private message Send e-mail Visit poster's website ICQ Number 
Reply with quote Back to top
Aman
Post subject: RE: Skript na blokovanie IP?  PostPosted: 20.04.2006 - 07:18 #34233
Majster


Joined: Nov 10, 2005
Posts: 2014
on to myslel v mikrotiku... mal s tym zacat... tuto temu dal aj na forum.routeros.cz

nie je to inak zla vec... nemam s utokmi problemy, ale asi by som to nahodil aj ja... keby nieco mate, nejaky konkretny priklad, alebo viete dat demo pristup kde je to spravene, tak by som bol rad...
 
 View user's profile Send private message Visit poster's website  
Reply with quote Back to top
Guest
Post subject: RE: Skript na blokovanie IP?  PostPosted: 20.04.2006 - 08:18 #34234






za povedzme 1000 sk som ochotny ti dany skript napisat Smile

ps: ked nevies, nauc sa
ps2: ked sa nevies naucit, zaplat Smile
 
   
Reply with quote Back to top
fixi
Post subject: RE: Skript na blokovanie IP?  PostPosted: 20.04.2006 - 08:39 #34235
Basic


Joined: Sep 13, 2005
Posts: 267
Location: Bratislava
ja mam v iptables v linuxe spravene nieco taketo Smile v tom chaine vipip su ipcky na ktore sa nebudu tie dalsie pravidla aplikovat Smile a samozrejme treba tento [ssh] chain vlozit na spravne mieto do INPUTu Smile. A osobne si mysilm ze ked mas dobre heslo, zaplatane bugy v sluzbach, tak ti taketo utoky mozu byt 3-4...
Code: ›
$iptables -N ssh
$iptables -A ssh -m state --state NEW -m recent --set --name ssh --rsource -j ACCEPT
$iptables -A ssh -j vipip
$iptables -A ssh -m recent --update --seconds 600 --hitcount 5 --rttl --name ssh --rsource -m limit --limit 10/sec -j ULOG --ulog-prefix "SSH"
$iptables -A ssh -m recent --update --seconds 600 --hitcount 5 --rttl --name ssh --rsource -j DROP
 
 View user's profile Send private message Send e-mail Visit poster's website ICQ Number 
Reply with quote Back to top
Guest
Post subject: RE: Skript na blokovanie IP?  PostPosted: 20.04.2006 - 17:10 #34249






dik za help ludia.. skusam nieco tak to sem potom hodim ak to bude fungovat
 
   
Reply with quote Back to top
Guest
Post subject: RE: Skript na blokovanie IP?  PostPosted: 20.04.2006 - 18:31 #34251






ok mozno to pomoze aj dalsim
 
   
Reply with quote Back to top
Display posts from previous:     
All times are GMT
Post new topic Reply to topic
View previous topic Printable version Log in to check your private messages View next topic
 
Jump to:  

SKFREE Forum Index » Mikrotik™ Podpora » Mikrotik™ Podpora
Powered by PNphpBB2 © 2003-2005 The PNphpBB Group
Credits

(C) SKFree 2002-2010: Powered by POSTNUKE. Môžete prebera? naše správy vo formáte XML(RSS)