security | iptables

iptables

Blocking an ip:

sudo iptables -A INPUT -p tcp -s 183.3.202.112 -j DROP

To block 116.10.191.* addresses:

sudo iptables -A INPUT -s 116.10.191.0/24 -j DROP

To block 116.10.. addresses:

sudo iptables -A INPUT -s 116.10.0.0/16 -j DROP

Blocking a port:

sudo iptables -I INPUT -p tcp --dport 25 -j REJECT

Make rules persistent:

sudo apt-get install iptables-persistent

sudo dpkg-reconfigure iptables-persistent

Info:

sudo iptables -L -n

sudo iptables -S

DROP vs REJECT:

serverfault

peterb