IP addresses keep on attacking our server. 192.168.0.115 and 192.168.0.125. Block them with tcp wrappers for all services?

January 1, 2018 759

Security Ubuntu 16.04

By:

khushdeep438

1 accept all related and established states
2 accept all packets from the icmp protocol (ping etc.)
3 accept everything coming to the loopback interface (lo)
4 accept ssh traffic – port 22 on the tcp protocol
5 accept http traffic – port 80 on the tcp protocol
6 accept https traffic – port 443 on the tcp protocol
7 drop all other packets.

2 Answers

lampreyOne January 2, 2018

You could do this with Digital Ocean's firewall service.

https://www.digitalocean.com/community/tutorials/an-introduction-to-digitalocean-cloud-firewalls

An Introduction To DigitalOcean Cloud Firewalls

by Melissa Anderson

DigitalOcean Cloud Firewalls, available in all regions at no charge, provide a network-based, stateful firewall service for your DigitalOcean Droplets. They block all traffic that isn't expressly permitted by a rule. They're designed to be easy to configure, quick to apply, and automation-friendly. In this guide, we'll explore how to create and manage DigitalOcean Cloud Firewalls.

Woet January 2, 2018

Those IPs are in private IP space, so I doubt it. How did you determine they are "attacking" you?

Have another answer? Share your knowledge.

Share

Share your Question

IP addresses keep on attacking our server. 192.168.0.115 and 192.168.0.125. Block them with tcp wrappers for all services?

Leave a Comment

Related Questions

Almost there!

Report a Bug