Re: [Shorewall-users] Blocking DNS cache queries

Tue, 08 Jul 2014 15:47:30 -0700 

Perhaps, I have used your DNS DDOS rule which is documented on the 
shorewall website
     DNS_DDoS           wan1                  $FW udp     domain

Tom Eastep schreef op 8-7-2014 23:33:
> On 7/8/2014 2:19 PM, Ruud Baart wrote:
>> I think I found part of the solution.
>>
>> In /etc/shorewall/rules:
>>        IPTABLES(DROP) wan1 $FW udp 53 ; -m string --algo bm --hex-string
>> "|01000001|"
>> does not work. But
>>        iptables -I INPUT 1 -p udp --dport 53 -m string --algo bm
>> --hex-string "|01000001|" -j DROP
>> works.
>>
>> I assume the place of the rule in the iptables rule set is important. In
>> the last case it is part of the chain INPUT and in the first case it is
>> part of the chain wa1-fw (of course this is specific for this server)
>>
>> I would like the get it working in shorewall. Easier to maintain and
>> easier to make an exception for the internal systems. Is there a way to
>> get the rule on the correct position or chain?
>>
> Are there UDP 53 rules before that one in the rules file?
>
> -Tom
>
>
> ------------------------------------------------------------------------------
> Open source business process management suite built on Java and Eclipse
> Turn processes into business applications with Bonita BPM Community Edition
> Quickly connect people, data, and systems into organized workflows
> Winner of BOSSIE, CODIE, OW2 and Gartner awards
> http://p.sf.net/sfu/Bonitasoft
> _______________________________________________
> Shorewall-users mailing list
> [email protected]
> https://lists.sourceforge.net/lists/listinfo/shorewall-users

-- 

Met vriendelijke groeten/Regards,
Tiswe/R.J. Baart Automatisering B.V.

Ruud Baart

Tel: +31 6 51318104


------------------------------------------------------------------------------
Open source business process management suite built on Java and Eclipse
Turn processes into business applications with Bonita BPM Community Edition
Quickly connect people, data, and systems into organized workflows
Winner of BOSSIE, CODIE, OW2 and Gartner awards
http://p.sf.net/sfu/Bonitasoft
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users

Reply via email to