Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Help tcpdrop script
Top Forums Shell Programming and Scripting Help tcpdrop script Post 302906553 by BernardoCR on Friday 20th of June 2014 02:25:01 PM
Old 06-20-2014
Help tcpdrop script
Hello,

I'm using a commando to check wich IPS are openning a large amount of connections to my server and kill them (to reduce synflood attack effects).

The command is the following one:

Code:
netstat -an | grep ^tcp | awk '{ print $5 }' | egrep -v '^(172\.16|192\.168|127\.0)' | cut -f1-4 -d\. | awk '{ a[$1]++ } END { for (i in a) { if (a[i] > 70) { print i; } } }' | xargs -n1 -I % sh -c 'sockstat -c | grep %' | awk '{ print $6 " " $7 }' | sed -e 's/:/ /g' -e 's/^/ tcpdrop /' | sh

It works when I run ./tcpdrop.sh, but when I try to add it to crontab it gives me the following error:

Code:
tcpdrop: not found
tcpdrop: not found
tcpdrop: not found

I have tried already to add an alias tcpdrop=/usr/sbin/tcpdrop, but had no success.

I think a way to make it work is, instead of outputing "tcpdrop", it would output /usr/sbin/tcpdrop, but I don't know how to change the "sed" command to add the whole path of tcpdrop.

Another question I need to solve is how to ignore certain IP addresses, like 67.43.2.1. I tried to include the IP on the egrep -v '^(172\.16|192\.168|127\.0)' command, like egrep -v '^(172\.16|192\.168|127\.0|67.43.2.1)'but didn't work.

I apreciatte your help.

Thank you.
 

5 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

create a shell script that calls another script and and an awk script

Hi guys I have a shell script that executes sql statemets and sends the output to a file.the script takes in parameters executes sql and sends the result to an output file. #!/bin/sh echo " $2 $3 $4 $5 $6 $7 isql -w400 -U$2 -S$5 -P$3 << xxx use $4 go print"**Changes to the table... (0 Replies)
Discussion started by: magikminox
0 Replies

2. Shell Programming and Scripting

Script will keep checking running status of another script and also restart called script at night

I am using blow script :-- #!/bin/bash FIND=$(ps -elf | grep "snmp_trap.sh" | grep -v grep) #check snmp_trap.sh is running or not if then # echo "process found" exit 0; else echo "process not found" exec /home/Ketan_r /snmp_trap.sh 2>&1 & disown -h ... (1 Reply)
Discussion started by: ketanraut
1 Replies

3. UNIX for Dummies Questions & Answers

Calling a script from master script to get value from called script

I am trying to call a script(callingscript.sh) from a master script(masterscript.sh) to get string type value from calling script to master script. I have used scripts mentioned below. #masterscript.sh ./callingscript.sh echo $fileExist #callingscript.sh echo "The script is called"... (2 Replies)
Discussion started by: Raj Roy
2 Replies

4. Shell Programming and Scripting

Shell script works fine as a standalone script but not as part of a bigger script

Hello all, I am facing a weird issue while executing a code below - #!/bin/bash cd /wload/baot/home/baotasa0/sandboxes_finance/ext_ukba_bde/pset sh UKBA_publish.sh UKBA 28082015 3 if then echo "Param file conversion for all the areas are completed, please check in your home directory"... (2 Replies)
Discussion started by: ektubbe
2 Replies

5. Shell Programming and Scripting

How to block first bash script until second bash script script launches web server/site?

I'm new to utilities like socat and netcat and I'm not clear if they will do what I need. I have a "compileDeployStartWebServer.sh" script and a "StartBrowser.sh" script that are started by emacs/elisp at the same time in two different processes. I'm using Cygwin bash on Windows 10. My... (3 Replies)
Discussion started by: siegfried
3 Replies

LEARN ABOUT CENTOS

largefile

largefile(5)                                            Standards, Environments, and Macros                                           largefile(5)

NAME

       largefile - large file status of utilities

DESCRIPTION

       A  large file is a regular file whose size is greater than or equal to 2 Gbyte ( 2**31 bytes). A small file is a regular file whose size is
       less than 2 Gbyte.

   Large file aware utilities
       A utility is called large file aware if it can process large files in the same manner as it does small files. A utility that is large  file
       aware is able to handle large files as input and generate as output large files that are being processed. The exception is where additional
       files  are used as system configuration files or support files that can augment the processing. For example, the file utility supports  the
       -m  option  for  an  alternative "magic" file and the -f option for a support file that can contain a list of file names. It is unspecified
       whether a utility that is large file aware will accept configuration or support files that are large files. If a large file  aware  utility
       does  not accept configuration or support files that are large files, it will cause no data loss or corruption upon encountering such files
       and will return an appropriate error.

       The following /usr/bin utilities are large file aware:

       adb           awk           bdiff         cat           chgrp
       chmod         chown         cksum         cmp           compress
       cp            csh           csplit        cut           dd
       dircmp        du            egrep         fgrep         file
       find          ftp           getconf       grep          gzip
       head          join          jsh           ksh           ln
       ls            mdb           mkdir         mkfifo        more
       mv            nawk          page          paste         pathchck
       pg            rcp           remsh         rksh          rm
       rmdir         rsh           sed           sh            sort
       split         sum           tail          tar           tee
       test          touch         tr            uncompress    uudecode
       uuencode      wc            zcat

       The following /usr/xpg4/bin utilities are large file aware:

       awk           cp            chgrp         chown         du
       egrep         fgrep         file          grep          ln
       ls            more          mv            rm            sed
       sh            sort          tail          tr

       The following /usr/xpg6/bin utilities are large file aware:

       getconf       ls            tr

       The following /usr/sbin utilities are large file aware:

       install       mkfile        mknod         mvdir         swap

       See the USAGE section of the swap(1M) manual page for limitations of swap on block devices greater than 2 Gbyte on a 32-bit operating  sys-
       tem.

       The following /usr/ucb utilities are large file aware:

       chown         from          ln            ls            sed
       sum           touch

       The /usr/bin/cpio and /usr/bin/pax utilities are large file aware, but cannot archive a file whose size exceeds 8 Gbyte - 1 byte.

       The /usr/bin/truss utilities has been modified to read a dump file and display information relevant to large files, such as offsets.

   cachefs file systems
       The following /usr/bin utilities are large file aware for cachefs file systems:

       cachefspack      cachefsstat

       The following /usr/sbin utilities are large file aware for cachefs file systems:

       cachefslog       cachefswssize   cfsadmin         fsck
       mount            umount

   nfs file systems
       The following utilities are large file aware for nfs file systems:

       /usr/lib/autofs/automountd    /usr/sbin/mount
       /usr/lib/nfs/rquotad

   ufs file systems
       The following /usr/bin utility is large file aware for ufs file systems:

              df

       The following /usr/lib/nfs utility is large file aware for ufs file systems:

              rquotad

       The following /usr/xpg4/bin utility is large file aware for ufs file systems:

              df

       The following /usr/sbin utilities are large file aware for ufs file systems:

       clri          dcopy         edquota       ff            fsck
       fsdb          fsirand       fstyp         labelit       lockfs
       mkfs          mount         ncheck        newfs         quot
       quota         quotacheck    quotaoff      quotaon       repquota
       tunefs        ufsdump       ufsrestore    umount

   Large file safe utilities
       A  utility  is called large file safe if it causes no data loss or corruption when it encounters a large file. A utility that is large file
       safe is unable to process properly a large file, but returns an appropriate error.

       The following /usr/bin utilities are large file safe:

       audioconvert     audioplay    audiorecord    comm          diff
       diff3            diffmk       ed             lp            mail

       mailcompat       mailstats    mailx          pack          pcat
       red              rmail        sdiff          unpack        vi
       view

       The following /usr/xpg4/bin utilities are large file safe:

       ed            vi            view

       The following /usr/xpg6/bin utility is large file safe:

       ed

       The following /usr/sbin utilities are large file safe:

       lpfilter      lpforms

       The following /usr/ucb utilities are large file safe:

       Mail          lpr

       The following /usr/lib utility is large file safe:

              sendmail

SEE ALSO

       lf64(5), lfcompile(5), lfcompile64(5)

SunOS 5.10                                                          7 Nov 2003                                                        largefile(5)
All times are GMT -4. The time now is 12:31 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy