Code Snippets

IPTables - temporarily block IP using hashlimit | linux

If you are not behind a load balancer then IPTables is still effective. Use the below as a template to throttle the rate any given IP can hit any port you want. Note, this is about port 22, but you can do 443 or 80 or whatever you want. But not behind a load balancer.

# first read docs at: iptables -m hashlimit --help
# remember, you can PERMANENTLY lock yourself out of SSH if you screw up.  Leave at least one session logged in.

iptables -A INPUT -p tcp -m multiport --dports 22 -m state --state NEW -m hashlimit --hashlimit 20 --hashlimit-htable-expire 300 --hashlimit-name sshdrop --hashlimit-mode srcip,dstport -j DROP

iptables -A INPUT -p tcp -m multiport --dports 22 -m state --state NEW -j ACCEPT

Published: Mon 8th January 2018
||COMMENTS|| This site proudly uses PrismJS to display code snippets

If you like this page, please share it.

Code Links - PHP, JS, CSS, Bootstrap, Bash, Emmet, IntelliJ, Sublime etc.

My personal list of links which I keep here publicly incase they help someone else one day.

Code Snippets

Snippets of PHP code I have gathered over the years. I keep them here for my own repository but also to share with others. I always link back when I remember the source.

My Github Repos

A work in progress. I am going to make as many modules that I write in my devbox public as possible.

Kit's Homepage

This site was originally intended as a test bed for code. It now includes my blog about business and powerlifting, as well as games for Spanish language learning

© 2018