Linux – Block an IP on Linux without the use of iptables

linuxnetworking

I would like to temporarily block all traffic from a single ip address to my host (Ubuntu 10.10, 2.6.35). Normally I'd use iptables but that package is not installed, and while I have root on this box, installing packages is out of the question.

Best Answer

If it would suffice to block the return packets from your host back to the IP in question, you could null route their /32:

# ip route add prohibit w.x.y.z/32

Inbound traffic will still arrive, but the three-way handshake on TCP connections will not complete, so any new inbound connection (and indeed existing connections) will be rendered useless.

Related Solutions

Linux – Block LogMeIn with IPTables

Logmein clients usually connect to some of those address ranges : http://www.lolloland.com/2011/05/28/logmein-ip-addresses

To block logmein clients you have to block all those ip address (all ranges). It's not useful if you use a /32 subnet mask (1 host).

Linux – Howto use ipset and iptables on Ubuntu 12.04 to block lots of IPs

I think you do something wrong. That article is not up to date because it's about 10.04 LTS. Now you can just issue

sudo apt-get install ipset

I've just installed ipset on my 12.04 without any problem. Take a look at my install log https://gist.github.com/3720382

Best Answer

Related Solutions

Linux – Block LogMeIn with IPTables

Linux – Howto use ipset and iptables on Ubuntu 12.04 to block lots of IPs

Related Topic