paramah/ossec-blacklist
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

make rules stateless so that new blacklist entry works for existing connections as well

Browse Source
This commit is contained in:
Pawel Krawczyk 2015-01-06 10:19:16 +00:00
parent 3aa2bc36b8
commit 84567f1845
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
blacklist.sh
View File

@ -32,10 +32,10 @@ fi
# inject references to blocklist in the beginning of input and forward chains # inject references to blocklist in the beginning of input and forward chains
if ! iptables -L INPUT | grep -q ${blocklist_chain_name}; then if ! iptables -L INPUT | grep -q ${blocklist_chain_name}; then
iptables -I INPUT 1 -m state --state NEW,RELATED -j ${blocklist_chain_name} iptables -I INPUT 1 -j ${blocklist_chain_name}
fi fi
if ! iptables -L FORWARD | grep -q ${blocklist_chain_name}; then if ! iptables -L FORWARD | grep -q ${blocklist_chain_name}; then
iptables -I FORWARD 1 -m state --state NEW,RELATED -j ${blocklist_chain_name} iptables -I FORWARD 1 -j ${blocklist_chain_name}
fi fi
# flush the chain referencing blacklists, they will be restored in a second # flush the chain referencing blacklists, they will be restored in a second