2020-05-24 12:24:00 +02:00
|
|
|
*raw
|
2021-04-09 01:28:01 +02:00
|
|
|
:PORTKNOCK -
|
2020-05-24 12:24:00 +02:00
|
|
|
|
2021-04-09 01:28:01 +02:00
|
|
|
-A PREROUTING -p tcp -m tcp --tcp-flags SYN,ACK SYN -j PORTKNOCK
|
2020-05-24 12:24:00 +02:00
|
|
|
|
2021-04-09 01:28:01 +02:00
|
|
|
-A PORTKNOCK -p tcp -m tcp --dport 22 -m recent --rcheck --seconds 300 --reap --name SSHOK -j RETURN
|
|
|
|
-A PORTKNOCK -p tcp -m tcp --dport 22222 -m recent --set --name SSHOK -j DROP
|
|
|
|
-A PORTKNOCK -p tcp -m tcp --dport 22 -j DROP
|
2020-05-24 12:24:00 +02:00
|
|
|
|
|
|
|
COMMIT
|