Re: fail2ban increase loadaverage to 18

To: debian-isp@lists.debian.org
Subject: Re: fail2ban increase loadaverage to 18
From: Max <cryptosonbian@ukr.net>
Date: Sun, 19 Aug 2012 22:15:10 +0300
Message-id: <[🔎] 50313B3E.8050503@ukr.net>
In-reply-to: <[🔎] 20120819184050.GC28928@work1>
References: <[🔎] 20120818161050.GV28928@work1> <[🔎] 503011D7.7030709@ukr.net> <[🔎] 20120819184050.GC28928@work1>

connlimit - allows you to limit the number of simultaneous openconnections to each IP-address (or subnet).


/iptables/sbin -p tcp -syn -dport 22 -m connlimit -connlimit-above 3 -j DROP

this command allows up to three simultaneous connection requests to ourssh-server with one IP-address.




19.08.2012 21:40, Michelle Konzack пишет:

Hello Max,

Am 2012-08-19 01:06:15, hacktest Du folgendes herunter:

It is necessary to limit the number of connections to
sshwithiptables, for example:
/iptables/sbin -p tcp -syn -dport 22-m connlimit -connlimit-above 3 -j DROP

Oops... I have locked me out!

I am right, this DROP from any IP addresses connections,  if  there  are
more then 3 at the same time?

My automated scripts and several 100 embedded security  systems  hit  the
limits.

Question:   Is there a possibility to set a TIME LIMIT
             together with the above iptables line?

Thanks, Greetings and nice Day/Evening
     Michelle Konzack

Reply to:

References:
- fail2ban increase loadaverage to 18
  - From: Michelle Konzack <linux4michelle@tamay-dogan.net>
- Re: fail2ban increase loadaverage to 18
  - From: Max <cryptosonbian@ukr.net>
- Re: fail2ban increase loadaverage to 18
  - From: Michelle Konzack <linux4michelle@tamay-dogan.net>

Prev by Date: RE: fail2ban increase loadaverage to 18
Next by Date: Re: fail2ban increase loadaverage to 18
Previous by thread: Re: fail2ban increase loadaverage to 18
Next by thread: Re: fail2ban increase loadaverage to 18
Index(es):
- Date
- Thread