1 |
On Sunday 22 October 2006 16:58, Dale wrote: |
2 |
> > # iptables -vL |
3 |
> > Chain INPUT (policy DROP 35510 packets, 16M bytes) |
4 |
> > pkts bytes target prot opt in out source |
5 |
> > destination |
6 |
> > 329K 558M ACCEPT all -- lo any anywhere |
7 |
> > anywhere 36M 54G ACCEPT all -- any any anywhere |
8 |
> > anywhere state RELATED,ESTABLISHED |
9 |
> > 3 228 ACCEPT icmp -- any any anywhere |
10 |
> > anywhere icmp echo-request limit: avg 30/min burst 5 |
11 |
also, if you are trying to block pings over limit, put in: |
12 |
|
13 |
iptables -I INPUT 4 -p icmp --icmp-type echo-request -j DROP |
14 |
(change the 4 to whatever the number rule will be from top if you have |
15 |
changed it).. |
16 |
|
17 |
> > 120 7057 ACCEPT icmp -- any any anywhere |
18 |
> > anywhere 1 60 ACCEPT tcp -- any any anywhere |
19 |
> > anywhere tcp dpt:ssh |
20 |
|
21 |
-Jason |
22 |
-- |
23 |
gpg public key: http://lazybird.hyperintelligent.net/~jbooth/jbooth_key.asc |
24 |
|
25 |
-- |
26 |
gentoo-user@g.o mailing list |