Skip to content

Commit 8f6fa72

Browse files
authored
Add new recidive chain
Adding a new firewall chain to block ALL connection attempts from abusers (block connection to all ports). Since a repeated abuser could have been banned for different attempts (MAIL, SSH, etc) it could be wise to block him completely.
1 parent 16e41ab commit 8f6fa72

File tree

1 file changed

+1
-0
lines changed

1 file changed

+1
-0
lines changed

bin/v-add-firewall-chain

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -62,6 +62,7 @@ case $chain in
6262
WEB) port='80,443'; protocol=TCP ;;
6363
DB) port='3306,5432'; protocol=TCP ;;
6464
HESTIA) port=$hestiaport; protocol=TCP ;;
65+
RECIDIVE) port='1:65535'; protocol=TCP ;;
6566
*) check_args '2' "$#" 'CHAIN PORT' ;;
6667
esac
6768

0 commit comments

Comments
 (0)