Those with Linux IPMASQ's

Toggle sidebar Toggle sidebar
Shuxclams

Shuxclams

Diamond Member
Oct 10, 1999
9,286
15
81
I thought that as a resource to each other we could paste ipchain rule sets to block "offending" IP addresses sort of like a "neighborhood watch" deal and continually update it so that it was up to date. I figure 2 rules would be cool, 1 that DENY's access to the actual IPMASQ and then a rule to REJECT any connections with services behind the MASQ;

ipchains -I input -s 206.112.211.188 -j DENY -l
ipchains -I input -s 216.68.170.159 -j DENY -l
ipchains -I input -s 216.23.15.41 -j DENY -l
ipchains -I input -s 216.68.121.91 -j DENY -l
ipchains -I input -s 216.68.172.20 -j DENY -l
ipchains -I input -s 63.29.181.106 -j DENY -l
ipchains -I input -s 24.93.229.180 -j DENY -l
ipchains -I input -s 24.93.229.111 -j DENY -l
ipchains -I input -s 132.239.50.13 -j DENY -l
ipchains -I input -s 137.110.64.57 -j DENY -l
ipchains -I input -s 216.23.20.114 -j DENY -l
ipchains -I input -s 216.68.139.199 -j DENY -l
ipchains -I input -s 216.68.133.82 -j DENY -l
ipchains -I input -s 216.68.172.111 -j DENY -l
ipchains -I input -s 216.68.159.229 -j DENY -l
ipchains -I input -s 216.68.187.107 -j DENY -l
ipchains -I input -s 216.23.15.41 -j DENY -l
ipchains -I input -s 64.158.178.211 -j DENY -l
ipchains -I input -s 4.20.90.121 -j DENY -l
ipchains -I input -s 206.64.105.121 -j DENY -l
ipchains -I input -s 12.27.166.121 -j DENY -l
ipchains -I input -s 208.47.242.121 -j DENY -l
ipchains -I input -s 207.86.73.121 -j DENY -l
ipchains -I input -s 216.52.97.37 -j DENY -l
ipchains -I input -s 206.98.113.121 -j DENY -l
ipchains -I input -s 206.229.153.121 -j DENY -l
ipchains -I input -s 4.20.90.81 -j DENY -l
ipchains -I input -s 206.64.105.81 -j DENY -l
ipchains -I input -s 12.27.166.81 -j DENY -l
ipchains -I input -s 208.47.242.81 -j DENY -l
ipchains -I input -s 207.86.73.81 -j DENY -l
ipchains -I input -s 206.191.170.233 -j DENY -l
ipchains -I input -s 206.98.113.81 -j DENY -l
ipchains -I input -s 206.229.153.81 -j DENY -l
ipchains -I input -s 208.51.233.81 -j DENY -l


ipchains -A input -i eth0 -p tcp -y -s 4.20.90.121/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 12.27.166.121/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 206.64.105.121/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 208.47.242.121/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 207.86.73.121/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 216.52.97.37/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 206.98.113.121/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 206.229.153.121/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 206.112.211.188/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 216.68.170.159/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 216.23.15.41/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 216.68.121.91/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 216.68.172.20/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 63.29.181.106/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 24.93.229.180/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 24.93.229.11/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 132.239.50.13/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 137.110.64.57/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 216.23.20.114/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 216.68.139.199/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 216.68.133.82/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 216.68.172.111/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 216.68.159.229/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 216.68.187.107/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 216.23.15.41/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 64.158.178.211/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 213.142.79.208/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 4.20.90.81/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 12.27.166.81/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 206.64.105.81/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 208.47.242.81/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 207.86.73.81/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 206.191.170.233/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 206.98.113.81/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 206.229.153.81/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 208.51.233.81/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 61.159.11.1/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 62.158.178.211/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 211.52.185.224/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 213.123.76.245/0 -d 0.0.0.0/0 -j REJECT
ipchains -A input -i eth0 -p tcp -y -s 213.142.79.208/0 -d 0.0.0.0/0 -j REJECT


What do you guys think?





SHUX
 
You must log in or register to reply here.

TRENDING THREADS

COMPANY
RESOURCES
FOLLOW
Top Bottom