1

IP Sets 6.16.1 Has Been Officially Released

view story
linux-howto

http://news.softpedia.com – IP sets, a framework inside the Linux 2.4.x and 2.6.x kernel, which can be administered by the ipset utility, is now at version 6.16.1. IP sets 6.16.1 can be used to store multiple IP addresses, port numbers and match against the collection by iptables in one swoop, dynamically update iptables rules against IP addresses, and much more. Highlights of IP sets 6.16.1: • ipset package version has been added to external module description; • Ba... (read more) (General)

netcastaustralia's picture
Submitted by netcastaustralia on 12/05/2012

Stories similar to IP Sets 6.16.1 Has Been Officially Released

Hi all, I have Iptables set up to block certain groups of IP addresses through Ipset. However, when I look at my logs in the morning, I can see that IP's that I have already added to m... [by Steely]

I use MAC address filtering on my Linux router. Here is what I have done:

iptables -A INPUT -i eth5 -m mac --mac-source 00:07:e9:84:2b:99 -j RETURN #User: Someuser iptables -A INPUT -i eth5 -j DROP

But the Iptables rule list is huge with more than 400 entries. Recently I read about the advantages of using Ipset with Iptables here.

I am using ipset in conjunction with iptables to create a list of IPs I want to block. I did this:

ipset -N blocking iphash ipset -A blocking 124.205.11.230 // and repeated this line for all IPs I want to add to "blocking" list

now I have to add this rule to iptables

if I do this

iptables -A INPUT -m set --set blocking src -j DROP

the IPs will be blocked for everything SSH, FTP, etc.

heya erl!1) Icon sets.  You can manage the icon sets(and add more) from the settings menu.  You can get more icon sets on the web.2) Packager's preference.  Chromium is just Chrome minus some Google-specific tracking stuff.3) You can get a later version of Iceweasel if you add experimental repos, but I wouldn't suggest it.  The return is minimal.   a) It&#03

ConfigServer Firewall, an SPI iptables firewall that is straight-forward, easy and flexible to configure and secure with extra checks to ensure smooth operation, is now at version 5.72.Highlights of ConfigServer Firewall 5.72:• Missing DD setting in DA and generic installations for ST_DISKW have been added;• IPv6 port settings have been modified to reflect IPv4 port settings for new inst

Greg Kroah-Hartman announced the immediate availability for download of Linux kernel 3.0.71 LTS.

This latest version in the 3.0.x branch comes may not have the glamor of other releases, but the developers added a lot of fixes and changes.

Highlights of Linux kernel 3.0.71 LTS:

• A flush failure has been fixed; • A _devs entry has been added for Samsung YP-Z3 mp3 player; • Don't a

Scientific Linux, a recompiled Red Hat Enterprise Linux put together by various labs and universities around the world, is now at version 6.4.

Scientific Linux 6.4 has finally arrived and, surprisingly, it's not all that different from the 6.3 version.

It's easy to block IPs from country using iptables (e.g. like http://www.cyberciti.biz/faq/block-entier-country-using-iptables/). However I read that the performance can go down if the deny list get too large.

GCC, the GNU Compiler Collection that includes frontends for C, C++, Fortran, Objective-C, Java, Ada, and Go, has just reached version 4.8.0.Highlights of GCC 4.8.0:• A new general optimization level, -Og, has been introduced;• A new option -ftree-partial-pre was added.