Comments on: iptables for asterisk

By: matt

matt — Thu, 16 Dec 2010 14:40:40 +0000

If you think that your VPS has been compromised I would definitely recommend getting a management company to have a look at it. Ideally raise a ticket with your VPS provider.

By: zlotowinfo

zlotowinfo — Thu, 16 Dec 2010 12:07:19 +0000

im totally newbie on linux, trixbox: venet0 receive: 57.49 KB/s – venet0 transmit: 3.28 KB/s
2 days ago when no body calls, was 0/0,
now more, leach transfer can disable my server in some day in moth

i don know how check where i loose transfer tried rules at bottom, but its block my server, cant use it
dont know what can i doo, tried iptraf, but there see only 2-3KB/s & dont see trafic by ip
even when i find atacker, cant stop him, because iptables like rules at bottom freeze server connections

By: matt

matt — Thu, 16 Dec 2010 11:46:41 +0000

Try changing this line -

/sbin/iptables –policy INPUT DROP

to ACCEPT temporarily. This is the ‘block everything’ rule. Then you can start the firewall and see what’s happening, but without being blocked.

By: zlotowinfo

zlotowinfo — Thu, 16 Dec 2010 10:30:57 +0000

server trixbox (centos), forgot to tell its vps, not standard server, i using too fail2ban

but someone leach my transfer, fail2ban not blocking this

By: zlotowinfo

zlotowinfo — Thu, 16 Dec 2010 10:28:49 +0000

standard 22
i changed only:
1. EXIF=”eth0″ to EXIF=”venet0″

2. to my ip
sbin/iptables -A INPUT -p tcp -i $EXIF -m state –state NEW -s 100.101.5.182 -j ACCEPT

server totally disconnect all users, stop responding ping, cant connect ssh

By: matt

matt — Thu, 16 Dec 2010 10:22:46 +0000

What port do you use for ssh? Is it the standard 22? If not you’d have to open the port you do use.

By: zlotowinfo

zlotowinfo — Thu, 16 Dec 2010 10:20:41 +0000

tried those rules
but server totally freezing to access