Linux – block ip with iptables ubuntu server

ipiptableslinuxSecurityUbuntu

I am trying to block one IP with iptables in my Ubuntu server 12.04.

The foreign IP is 117.16.18.95.dyna. You can take a look at the next image:

I have added this ip to iptables with the next command:

sudo iptables -A INPUT -s 117.16.18.95 -p tcp -j DROP
sudo service iptables-persistent save
sudo service iptables-persistent restart

However, when i run again the command netstat -tap, this IP is not blocked.

How can I remove/block/delete this IP from my Ubuntu server?

Best Answer

IP adresses contains only digits. So '117.16.18.95.dyna' is definitely not IP, it is FQDN. I suspect that real ip is reversed. So, try to block 95.18.16.117
Or just to ensure try netstat with '-n' arg, it will prevent IPs from resolving to FQDNs

Related Solutions

Ssh – iptables rules to block ssh remote forwarded ports

Would it not be easier to switch off ssh forwarding on the ssh server? Just change AllowTcpForwarding from yes to no in your /etc/ssh/sshd_config. If this doesn't suit, you could try something along the lines of

iptables -A OUTPUT -o eth1 -p tcp --cmd-owner "sshd" -j DROP

Iptables port redirection on Ubuntu

Try: sudo iptables -t nat -A PREROUTING -p tcp --dport 80 -j DNAT --to 127.0.0.1:8100

Best Answer

Related Solutions

Ssh – iptables rules to block ssh remote forwarded ports

Iptables port redirection on Ubuntu

Related Topic