From: | pk <peterk2@××××××××.se> | ||
---|---|---|---|
To: | gentoo-user@l.g.o | ||
Subject: | Re: [gentoo-user] Trying to block third party ip address with iptables... [SOLVED] | ||
Date: | Sun, 14 Sep 2008 11:26:28 | ||
Message-Id: | 48CCF4B9.4090802@coolmail.se | ||
In Reply to: | Re: [gentoo-user] Trying to block third party ip address with iptables... by Tony Stohne |
1 | Tony Stohne wrote: |
2 | |
3 | > HTTP requests are sent over TCP, so try a REJECT with TCP reset instead. |
4 | > Something like this should do the trick, since the connection would be reset |
5 | > more or less instantly avoiding the timeout: |
6 | > |
7 | > iptables -A INPUT -s xxxx -p tcp -j REJECT --reject-with tcp-reset |
8 | > iptables -A OUTPUT -s xxxx -p tcp -j REJECT --reject-with tcp-reset |
9 | |
10 | Ok, good to know. I tried something simpler; putting the domain in |
11 | /etc/hosts pointing to 127.0.0.1 (as suggested by Neil Bothwick). But |
12 | I'll keep this in mind for the future. Thanks for the input! |
13 | |
14 | Best regards |
15 | |
16 | Peter K |
Subject | Author |
---|---|
Re: [gentoo-user] Trying to block third party ip address with iptables... [SOLVED] | Neil Bothwick <neil@××××××××××.uk> |
Re: [gentoo-user] Trying to block third party ip address with iptables... [SOLVED] | Tony Stohne <tstohne@××××××××.net> |