Results 1 to 2 of 2

Thread: IPTables Clueless

  1. #1
    Buddha
    Guest

    IPTables Clueless

    I've been trying to figure out how to block IP addresses for any access,
    though the point is to just block certain websites. I'm speaking of those
    scam sites that presume to be scanning your PC for viruses. They use an IP
    address in the url so URL blocking doesn't work.

    Like these mother!#&*ers:
    http://91.213.217.190/index.php?On=v...&4f=C8#toolrmq

    I'm using DD-WRT firmware in a Linksys WRT350N device. I've been trying to
    enter a proper IPTABLES command in the command line box in the
    Administration menu. I've tried:

    iptables -I INPUT -d 91.213.217.190 -j logdrop
    iptables -I OUTPUT -d 91.213.217.190 -j logdrop

    No effect at all.

    Can anyone tell me how I can do this?

    Note, I can use the hosts file, or DD-WRT, to block the URL that redirects
    to the one with the IP in it, but I have a feeling that those change much
    more regularly than the bastard's IP itself.

  2. #2
    Andre
    Guest

    Re: IPTables Clueless

    Buddha wrote:

    > I've been trying to figure out how to block IP addresses for any access,
    > though the point is to just block certain websites. I'm speaking of those
    > scam sites that presume to be scanning your PC for viruses. They use an IP
    > address in the url so URL blocking doesn't work.
    >
    > Like these mother!#&*ers:
    >

    http://91.213.217.190/index.php?On=v...&4f=C8#toolrmq
    >
    > I'm using DD-WRT firmware in a Linksys WRT350N device. I've been trying to
    > enter a proper IPTABLES command in the command line box in the
    > Administration menu. I've tried:
    >
    > iptables -I INPUT -d 91.213.217.190 -j logdrop
    > iptables -I OUTPUT -d 91.213.217.190 -j logdrop
    >
    > No effect at all.
    >
    > Can anyone tell me how I can do this?
    >
    > Note, I can use the hosts file, or DD-WRT, to block the URL that redirects
    > to the one with the IP in it, but I have a feeling that those change much
    > more regularly than the bastard's IP itself.


    Try something like..

    IFACE="ppp0"
    STATE=" -m state --state ESTABLISHED,RELATED"


    iptables -F INPUT
    iptables -F OUTPUTiptables -N IlogDrop
    iptables -A IlogDrop -i $IFACE -j LOG --log-level emerg --log-prefix="FI "
    iptables -A IlogDrop -i $IFACE -j DROP


    iptables -A INPUT -i $IFACE -p tcp --tcp-flags SYN,ACK SYN,ACK -m state --
    state NEW -j IlogDrop
    iptables -A INPUT -p icmp --icmp-type 0 -j ACCEPT
    iptables -A INPUT -i $IFACE -p tcp ${STATE} -j ACCEPT



    iptables -A OUTPUT -o $IFACE -p tcp --destination relay.skynet.be --dport 25
    -j ACCEPT
    iptables -A OUTPUT -o $IFACE -p tcp --destination relay.edpnet.be --dport 25
    -j ACCEPT
    Regards




Similar Threads

  1. Iptables rules Access by MAC and redirect
    By Tom Tom in forum comp.security.firewalls
    Replies: 2
    Last Post: 01-12-10, 03:19 AM
  2. Help writing a iptables rule
    By Paulo da Silva in forum comp.security.firewalls
    Replies: 6
    Last Post: 12-27-09, 07:27 PM
  3. need help with iptables
    By Omid Ghiami in forum comp.security.firewalls
    Replies: 1
    Last Post: 10-14-09, 02:25 AM
  4. help me ): IM CLUELESS o_O
    By jinwoooooooo in forum Wireless Networks & Routers
    Replies: 0
    Last Post: 11-03-07, 07:09 PM
  5. Little help? (Roadrunner Cust. Svc. clueless!)
    By NewJackedCity in forum Broadband Tweaks Help
    Replies: 7
    Last Post: 05-22-07, 06:58 AM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •