On 28/12/12 21:26, Gerald Davies wrote:
> On Fri, Dec 28, 2012 at 7:51 PM, Jan Henkins <jan@???> wrote:
>> Awesome! :-) So it's only ipset that needs to be compiled, the standard
>> iptables seems to be happy with the 3.2.0 kernel.
> Don't forget libmnl too!
>
> Someone should put this on the Bitfolk wiki. I'm going to have a look
> at my iptables scripts later or tomorrow.
>
> Thanks again for also having a look.
There is a better way as shown in this blog:
http://blog.robin.smidsrod.no/2011/10/07/autoblock-sshd-dictionary-attacks
No recompiling needed, and it works. It's an older version of ipset (4.2
as opposed to 6.12) so the syntax differs a bit.
--
Regards,
Jan Henkins
