Hi David;
Thank you and sorry, because I forgot to mention, that I talked
Thank you and sorry, because I forgot to mention, that I talked
about IP address spoofing protection. Sorry again. So, it seems,
that I'm in the right direction if it's about filtering; INVALID and
spoofing. For now, I will be using;
> iptables -A INPUT -m conntrack --ctstate INVALID -j DROP
> iptables -A INPUT -m conntrack --ctstate INVALID -j DROP
...rule for INVALID packets and this one for antispoof protection;
> iptables -A INPUT -s 10.0.0.0/8 -j DROP etc.
Thank you for that link. It is a really interesting website. iptables
is becoming more and more interesting, but pf firewall has a much
> iptables -A INPUT -s 10.0.0.0/8 -j DROP etc.
Thank you for that link. It is a really interesting website. iptables
is becoming more and more interesting, but pf firewall has a much
simpler syntax, but there is UFW; it seems to be a good project.
Thank you again, David. My doubts on iptables have been solved.
Thank you again, David. My doubts on iptables have been solved.
Best regards.
1 comment:
Have you ever thought about writing an e-book or guest authoring on other sites?
I have a blog based on the same topics you discuss and would love to have you share
some stories/information. I know my visitors
would appreciate your work. If you're even remotely interested, feel free to shoot me an e-mail.
Review my site :: welche krankenkasse ist die beste
Post a Comment