[ic] IC not responding

Peter peter at pajamian.dhs.org
Tue Nov 15 21:43:50 EST 2005


On 11/15/2005 03:00 PM, John1 wrote:
> I am not up on iptables, but from what I can see the lockout command I 
> should use is:
> 
> iptables -I INPUT -s %s -j DROP
> 
> Is this correct?
> 
> The problem I see with this is that the IP address is then *permanently* 
> locked out.  What is the best way to lockout IP addresses for a given 
> timeframe, and then let them back in again?  I would be really grateful 
> if anyone has a script to do this that they wouldn't mind sharing?  Thanks

Try something like (off the top of my head, untested):

iptables -I INPUT -s %s -j DROP; echo 'iptables -D INPUT -s %s -j DROP' 
| at now + 1 hours

Peter


More information about the interchange-users mailing list