Iptables rules from scan.

[php]
-A INPUT -p tcp –tcp-flags SYN,ACK SYN,ACK -m state –state NEW -j DROP
-A INPUT -p tcp –tcp-flags ALL NONE -j DROP
-A INPUT -p tcp –tcp-flags SYN,FIN SYN,FIN -j DROP
-A INPUT -p tcp –tcp-flags SYN,RST SYN,RST -j DROP
-A INPUT -p tcp –tcp-flags ALL SYN,RST,ACK,FIN,URG -j DROP
-A INPUT -p tcp –tcp-flags FIN,RST FIN,RST -j DROP
-A INPUT -p tcp –tcp-flags ACK,FIN FIN -j DROP
-A INPUT -p tcp –tcp-flags ACK,PSH PSH -j DROP
-A INPUT -p tcp –tcp-flags ACK,URG URG -j DROP
-A INPUT -p tcp -m state –state NEW -m recent –set
-A INPUT -p tcp -m state –state NEW -m recent –update –seconds 30 –hitcount 10 -j DROP
-A FORWARD -p tcp -m state –state NEW -m recent –set
-A FORWARD -p tcp -m state –state NEW -m recent –update –seconds 30 –hitcount 10 -j DROP
-A INPUT -p tcp ! –syn -m state –state NEW -j DROP
[/php]

Leave a Reply

*
*