Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
B
B
Bobur Bakhritdinov2015-10-16 10:01:47
linux
Bobur Bakhritdinov, 2015-10-16 10:01:47

iptables geo filter rules?

Help solve the problem, block all countries except one, using the ip range! xtables I already tried it skips packets.
OS: Centos 6.7
IPTABLES: 1.4.7

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

2 answer(s)
Report
M
mikes, 2015-10-16
@bakhritdinov_b

If you do not drive with geoip modules, then you need ipset

ipset -N %country% hash:net
wget -P . http://www.ipdeny.com/ipblocks/data/countries/%country%.zone
for i in $(cat /etc/%country%.zone ); do ipset -A %country% $i; done
iptables -P INPUT DROP
iptables -A INPUT -p tcp -m set --match-set %country% src -j ACCEPT

this is what it looks like to me

Report
A
Axian Ltd., 2015-10-16
@AxianLTD

Google "geo filter iptables"

Similar questions
N
Nikita Reshetnyak2019-10-07 07:26:25
Why can't you hear the interlocutor in the absence of a tunnel between offices? 2Reply
R
rinaz222019-10-18 18:19:06
How to follow the link in the mobile version of the site only after the second click? 5Reply
J
John_T2014-10-23 15:18:18
What's the problem with installing Elementary OS? 2Reply
F
f4u2019-03-20 18:50:22
How to copy one file to multiple folders on vds? 1Reply
I
iLamer2016-10-21 19:16:33
Why can not connect via x2go? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question