{"id":255056,"date":"2015-01-15T23:00:51","date_gmt":"2015-01-15T15:00:51","guid":{"rendered":"http:\/\/blog.zhenglei.net\/?p=255056"},"modified":"2015-01-16T12:04:11","modified_gmt":"2015-01-16T04:04:11","slug":"block-ip-addr","status":"publish","type":"post","link":"https:\/\/blog.zhenglei.net\/?p=255056","title":{"rendered":"Block IP Addr"},"content":{"rendered":"<header class=\"entry-header\">\n<h1 class=\"entry-title\"><\/h1>\n<\/header>\n<div class=\"entry-content\">\n<h2><span style=\"color: #ff6600\">How To List Your Existing IP Address Rules<\/span><\/h2>\n<pre>iptables -L<\/pre>\n<h2><span style=\"color: #ff6600\">How To Help<\/span><\/h2>\n<pre>iptables -h<\/pre>\n<p><strong><span style=\"color: #ff6600\">How do I block an IP address ?<\/span><br \/>\n<\/strong><\/p>\n<pre>iptables -A INPUT -s <span class=\"skimlinks-unlinked\">xx.xx.xx.xx<\/span> -j DROP<\/pre>\n<h2><span style=\"color: #ff6600\">How To Block A Range of IP Addresses ?<\/span><\/h2>\n<pre>iptables -A INPUT -s <span class=\"skimlinks-unlinked\">xx.xx.xx.xx\/8<\/span> -j DROP<\/pre>\n<p><strong><span style=\"color: #ff6600\">How can I block a particular PORT for a particular IP ?<\/span><br \/>\n<\/strong><\/p>\n<pre>iptables -A INPUT -s IP-ADD -p tcp --destination-port portnumber -j DROP<\/pre>\n<pre>iptables -A INPUT -s xx.xx.xx.xx -p tcp --destination-port 25 -j DROP<\/pre>\n<p><span style=\"color: #ff6600\">\u00a0<strong>How to start\/stop iptables<\/strong><\/span><\/p>\n<div>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 \/etc\/init.d\/iptables stop\/etc\/init.d\/iptables start<\/p>\n<\/div>\n<div><span style=\"color: #ff6600\"><strong>How do I unblock an IP address ?<\/strong><\/span><\/div>\n<pre>iptables -D INPUT -s IP-ADDR -j DROP<\/pre>\n<p><span style=\"color: #ff6600\">\u00a0<strong>How do I save iptables ?<\/strong><\/span><\/p>\n<div>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 \/etc\/rc.d\/init.d\/iptables save<\/div>\n<div>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 service iptables save<\/div>\n<div><\/div>\n<div>*****************************************************<\/div>\n<div><span style=\"color: #00ff00\">Script for Debian 6<\/span><\/div>\n<div>\u00a0 \/etc\/init.d\/save_iptables<\/div>\n<div>\u00a0 \/etc\/init.d\/load_iptables<\/div>\n<div>\u00a0 \/usr\/sbin\/blockip<\/div>\n<div><\/div>\n<div>\u00a0 \/etc\/network\/if-pre-up.d\/load_iptables\u00a0 -&gt; \/etc\/init.d\/load_iptables<\/div>\n<div><\/div>\n<div>\u00a0 <span style=\"color: #ff00ff\">How to Block IP<\/span>:<\/div>\n<div>\u00a0 blockip\u00a0 103.41.124.64<\/div>\n<div><\/div>\n<div>\u00a0 <span style=\"color: #ff00ff\">cat \/usr\/sbin\/blockip<\/span><\/div>\n<div>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 <em>#!\/bin\/sh<\/em><\/div>\n<div><em>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 if\u00a0 [\u00a0 $# -eq 0 ];then<\/em><\/div>\n<div><em>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 echo &#8220;Usage:\u00a0 $0 ip_addr&#8221;<\/em><\/div>\n<div><em>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 exit<\/em><\/div>\n<div><em>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 fi<\/em><\/div>\n<div><em>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 echo &#8220;ip address $1 will be blocked&#8221;<\/em><\/div>\n<div><em>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 iptables -A INPUT -s $1 -j DROP<\/em><\/div>\n<div><em>\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 \/etc\/init.d\/save_iptables<\/em><\/div>\n<div><em>\u00a0\u00a0\u00a0\u00a0\u00a0 clear<\/em><\/div>\n<div><em>\u00a0\u00a0\u00a0\u00a0\u00a0 iptables -L<\/em><\/div>\n<div><\/div>\n<div>\u00a0\u00a0 <span style=\"color: #ff00ff\">cat \/etc\/init.d\/save_iptables<\/span><\/div>\n<div>\u00a0\u00a0 <em>#!\/bin\/sh<\/em><\/div>\n<div><em>\u00a0\u00a0 \/sbin\/iptables-save &gt; \/etc\/iptables<\/em><\/div>\n<div><\/div>\n<div><\/div>\n<div>\u00a0 <span style=\"color: #ff00ff\">cat \/etc\/init.d\/load_iptables<\/span><\/div>\n<div>\u00a0 <em>#!\/bin\/sh<\/em><\/div>\n<div>\u00a0 <em>\/sbin\/iptables-restore &lt; \/etc\/iptables<\/em><\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>How To List Your Existing IP Address Rul &hellip; <a href=\"https:\/\/blog.zhenglei.net\/?p=255056\">\u7ee7\u7eed\u9605\u8bfb <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6,2,9],"tags":[],"class_list":["post-255056","post","type-post","status-publish","format-standard","hentry","category-internet","category-linux","category-vps"],"_links":{"self":[{"href":"https:\/\/blog.zhenglei.net\/index.php?rest_route=\/wp\/v2\/posts\/255056","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blog.zhenglei.net\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.zhenglei.net\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.zhenglei.net\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.zhenglei.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=255056"}],"version-history":[{"count":3,"href":"https:\/\/blog.zhenglei.net\/index.php?rest_route=\/wp\/v2\/posts\/255056\/revisions"}],"predecessor-version":[{"id":255060,"href":"https:\/\/blog.zhenglei.net\/index.php?rest_route=\/wp\/v2\/posts\/255056\/revisions\/255060"}],"wp:attachment":[{"href":"https:\/\/blog.zhenglei.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=255056"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.zhenglei.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=255056"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.zhenglei.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=255056"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}