Originally Posted by
reiten
Someone is scanning internet looking for admin pages of typical services and other common vulnerabilities exposed to internet. That's pretty common and there's no good way to block them (at least I don't know any).
Yes. But if someone scans my router several times, i block them that way:
Code:
$ cat /tmp/local/sbin/post-firewall
#!/bin/sh
...
for banned_ip in `cat /tmp/local/sbin/banned_ips.txt`;
do
iptables -I INPUT -s $banned_ip -j DROP
done
Code:
$ cat /tmp/local/sbin/banned_ips.txt
109.230.220.35
109.230.251.94
109.236.81.56
111.228.1.5
116.255.163.100
118.129.154.165
119.188.7.161
...
Its ugly way, i know, but some scanners are really annoying.