Project

General

Profile

Feature #1439

request: ip banning options for mod_evasive

Added by Anonymous over 11 years ago. Updated almost 10 years ago.

Status:
Wontfix
Priority:
Low
Assignee:
Category:
mod_evasive
Target version:
Start date:
Due date:
% Done:

0%

Estimated time:
Missing in 1.5.x:

Description

when mod_evasive turns a connection away it would be nice if it could increment some internal counter for that ip and blacklists it after while.

iptables -I INPUT -p tcp --dport 22 -i eth0 -m state --state NEW -m recent \
--set

iptables -I INPUT -p tcp --dport 22 -i eth0 -m state --state NEW -m recent \
--update --seconds 60 --hitcount 3 -j REJECT

works at a lower level though, so might be more useful

-- w1zzard

History

#1

Updated by Anonymous about 11 years ago

+1 with some configuration

#2

Updated by stbuehler over 10 years ago

  • Target version changed from 1.4.20 to 1.4.21
#3

Updated by icy about 10 years ago

  • Target version changed from 1.4.21 to 1.4.22
  • Patch available set to No
#4

Updated by stbuehler almost 10 years ago

  • Target version changed from 1.4.22 to 1.4.23
#5

Updated by stbuehler almost 10 years ago

  • Status changed from New to Wontfix

lighty is not running as root (at least it shouldn't), so that is not possible. and it works only with iptables, ...

Just use the iptable connlimit module.

Also available in: Atom