8 |
+ $OUT .=<<"EOF"; |
+ $OUT .=<<"EOF"; |
9 |
+ |
+ |
10 |
+ # Use recent packets match to block SSH from sites generating |
+ # Use recent packets match to block SSH from sites generating |
11 |
+ # $abtries connections within $abtime seconds or $abtries2 in $abtime2 |
+ # $abtries connections within $abtime seconds |
12 |
+ # Check/clear IP block status in /proc/net/ipt_recent/SSH |
+ # Check/clear IP block status in /proc/net/ipt_recent/SSH |
13 |
+ /sbin/iptables --new-chain SSH_Autoblock |
+ /sbin/iptables --new-chain SSH_Autoblock |
14 |
+ /sbin/iptables --append SSH_Autoblock -m recent --set --name SSH |
+ /sbin/iptables --append SSH_Autoblock -m recent --set --name SSH |