iptables question

December 29, 2013 2.3k

I have noticed a bot trying a brute force on one of my CMS's. When I try to add the IP address with

iptables -A INPUT -s 91.207.6.154 -j DROP

it shows in iptables as

DROP    all   --   154.6.207.91.unknown.SteepHost.Net   anywhere

and the ip is still able to connect to the server. Am I doing something wrong with adding the IP? Can I add the IP and not have the host for that IP show in iptables? Maybe that has something to do with it. Thank you

2 Answers

kamaln7 MOD December 29, 2013

Try adding it to the top of the chain:

Delete the old rule:

iptables -D INPUT -s 91.207.6.154 -j DROP

Re-add it:

iptables -I INPUT -s 91.207.6.154 -j DROP

dirk2099 December 29, 2013

Yep that worked. Had a brain fart there for a second.

Thank you

Have another answer? Share your knowledge.

Share

Share your Question

iptables question

Leave a Comment

Almost there!

Report a Bug