Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Linux bridged firewall - monitor traffic & block IP
Top Forums UNIX for Advanced & Expert Users Linux bridged firewall - monitor traffic & block IP Post 302785163 by coolatt on Monday 25th of March 2013 03:35:01 AM
Old 03-25-2013
Debian Linux bridged firewall - monitor traffic & block IP
Hi All,

I successfully configured a DEBIAN Lenny bridged firewall
using ebtables.
The bridged interface is br0.
The ethernet interface are eth0 & eth1 respectively.

All the traffic are transparently passing my firewall but i need to find & block temporarily the bandwidth abusers.
Can someone help me how to block ip temporarily using IPTABLES ?
 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

paging space & monitor

Hi folks, Lately my RS 6000 server is giving some problems. Needs a reboot from time to time (4-8 days):mad: Specs: IBM/RS6000 Unix 4.3 3 gigabyte memory I keep getting messages like : " The fork function failed " I have raised the paging space from 1 gigabyte to 3 gigabyte,... (2 Replies)
Discussion started by: Erik Rooijmans
2 Replies

2. UNIX for Dummies Questions & Answers

How to Block/Ban Traffic From Specific Referrer

I've got a problem site that I need to block all referrers, but if possible, I'd really like to ban all ip's at the same time so that they can't figure out a way around it. Any ideas? (4 Replies)
Discussion started by: osoamor
4 Replies

3. Linux

using firewall to block port

Hi, I will like to allow access to the mysql port (3306) to certain IP address. All other IP's should be automatically blocked. What is the best way to do this? (8 Replies)
Discussion started by: shantanuo
8 Replies

4. Shell Programming and Scripting

Block incoming traffic FTP from internet using iptables

Hi everybody. I have the next scenary: eth0: WAN eth1: DMZ eth2: LAN I need to block all incoming trafic from the internet through my network LAN using iptables. I have squid but i need to do this using ipatbles. I have been listening about iptables -A FORDAWARD but I am stuck right... (0 Replies)
Discussion started by: edeamat
0 Replies

5. Red Hat

How to monitor network device traffic using MRTG?

How to monitor network device traffic using MRTG? How can I add network devices in MRTG configuration to monitor? (2 Replies)
Discussion started by: manalisharmabe
2 Replies

6. IP Networking

block windows file sharing traffic between networks

I have a LAN for users 192.0.3.0 I have a WAN for servers 192.0.0.0 I have a iptables capable router with a static route from 192.0.3.0 to 192.0.0.0 my problem is SMB file sharing traffic is leaking on to our 192.0.0.0 and causing congestion. I only have one printer IP address that needs... (13 Replies)
Discussion started by: herot
13 Replies

7. Solaris

HBA data traffic monitor in Solaris 10.

Hi All We have T4-4 Server with 2 HBA configured for SAN connectivity. We want to monitor Data traffice going through these HBA. On other AIX system we have that capability with nmon. Following screen shows nmon HBA monitoring can we achieve same in Solaris 10. ... (1 Reply)
Discussion started by: uxravi
1 Replies

8. UNIX and Linux Applications

Xalan & Xerces issues for Oracle Linux 6.6 & Solarisstudio12.3 C++ compiler for Linux

Hi Team, I am facing issue while using Xalan & Xerces for my application. Below are my environment details i am using :- Platform:- Oracle Linux 6.6 Compiler :- solarisstudio12.3 C++ compiler for Linux Below are the versions of Xalan & Xerces source code used to build the shared object... (0 Replies)
Discussion started by: agrachirag
0 Replies

9. IP Networking

I would like to monitor network traffic for a computer on my network

My son does homework on a school laptop. I was thinking about setting up a gateway on my home network, so that I can monitor web traffic and know if he is doing his homework without standing over his shoulder. Ideally I would like to use the Raspberry Pi Model b that I already have. However, I... (15 Replies)
Discussion started by: gandolf989
15 Replies

10. Shell Programming and Scripting

Unable to open firewall port for external traffic.

Below is what i did to open the firewall port on # sudo firewall-cmd --zone=public --add-port=27012/tcp --permanent Warning: ALREADY_ENABLED: 27012:tcp success # sudo firewall-cmd --reload success # firewall-cmd --list-all public target: default icmp-block-inversion: no ... (10 Replies)
Discussion started by: mohtashims
10 Replies

LEARN ABOUT SUSE

ifcfg-bridge

IFCFG-BRIDGE(5) 					       Network configuration						   IFCFG-BRIDGE(5)

NAME

       ifcfg-bridge - ethernet bridge interface configuration

SYNOPSIS

       /etc/sysconfig/network/ifcfg-br*

CONFIGURATION

       To  setup  a  bridge interface you need a configuration file ifcfg-<interface-name> with the usual network settings. But you must add addi-
       tional variables:

       BRIDGE <yes|no>
	      This option must be set to 'yes' to identify this interface as a bridge interface.

       BRIDGE_PORTS <interface1 interface2 ... interfaceN>
	      This variable contains a space-separated list of N interfaces which take part in the bridging.

OPTIONAL VARIABLES

       BRIDGE_AGEINGTIME <time>
	      This option sets the ethernet address ageing time, in seconds. After <time> seconds of not having seen a frame coming from a certain
	      address, the bridge will delete that address from the forwarding database. Setting ageing time to zero makes all entries permanent.

       BRIDGE_FORWARDDELAY <time>
	      Forwarding  delay  time  is  the	time  in seconds spent in each of the listening and learning states before the forwarding state is
	      entered. This delay is so that when a new bridge comes onto a busy network it looks at some traffic before participating.

       BRIDGE_HELLOTIME <time>
	      Periodically, a hello packet is sent out by the root bridge and the designated bridges.	Hello  packets	are  used  to  communicate
	      information about the topology throughout the entire bridged local area network.

       BRIDGE_MAXAGE <time>
	      If  a another bridge in the spanning tree does not send out a hello packet for a long period of time, it is assumed to be dead. This
	      timeout can be set with this variable.

       BRIDGE_PATHCOSTS <costs1 costs2 ... costsN>
	      This is a space-separated list of costs corresponding to the interfaces in BRIDGE_PORTS.	Each interface in BRIDGE_PORTS could  have
	      a different speed and this value is used when deciding which link to use. Faster interfaces should have lower costs.

       BRIDGE_PORTPRIORITIES <prio1 prio2 ... prioN>
	      This  is	a  space-separated  list of priorities corresponding to the interfaces in BRIDGE_PORTS.  The priority value is an unsigned
	      8-bit quantity (a number between 0 and 255), and has no dimension. This metric is used in the designated port and root  port  selec-
	      tion algorithms.

       BRIDGE_PRIORITY <priority>
	      This  option  sets  the  bridge's  priority to <priority>. The priority value is an unsigned 16-bit quantity (a number between 0 and
	      65535), and has no dimension.  Lower priority values are 'better'. The bridge  with  the	lowest	priority  will	be  elected  'root
	      bridge'.

       BRIDGE_STP <on|off>
	      Multiple	ethernet  bridges can work together to create even larger networks of ethernets using the IEEE 802.1d spanning tree proto-
	      col. This protocol is used for finding the shortest path between	two  ethernets, and for eliminating loops from the topology.   The
	      spanning	tree  protocol	can also be turned off (for those situations where it just doesn't make sense, for example when this linux
	      box is the only bridge on the LAN, or when you know that there are no loops in the topology.)

EXAMPLE

       Minimal example for a bridge interface on eth0 and eth1, the bridge interface itself is configured via dhcp:

       ifcfg-br0
	    STARTMODE='auto'
	    BOOTPROTO='dhcp'
	    BRIDGE='yes'
	    BRIDGE_PORTS='eth0 eth1'
	    BRIDGE_PORTPRIORITIES='50 20'

ADDITIONAL INFORMATION

       For additional and more general information have a look into <http://linux-net.osdl.org/index.php/Bridge>.

BUGS

       Please report bugs at <https://bugzilla.novell.com/index.cgi>

AUTHOR

       Stefan Scheler <sscheler@suse.de> -- ifup-bridge

SEE ALSO

       ifcfg(5), ifup(8), brctl(8).

sysconfig							   December 2005						   IFCFG-BRIDGE(5)
All times are GMT -4. The time now is 02:27 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy