01-11-2016
Quote:
Originally Posted by
[xEF]Danger
How to make a log that will log all ips that connect to the server or send packets?
While this is perhaps possible (look into
tcpdump if you insist) you don't want to do that. Usually a server has one or at best several services it offers - like "web services" if it is a web server, etc.. This makes one or several ports (for the exemplary webserver this is 80 - HTTP) necessary. Identify these, close all the others and log only those really necessary. Most network-applications (web server software, for instance) offer specialized logging facilities for what they do. You should use these.
Quote:
Originally Posted by
[xEF]Danger
And how to block an ip that make packets flood and try to DDoS? Thanks.
Not at all. Of course, there are IP-filtering programs like "iptables", but a "server" should do what it is intended to do - nothing else. For everything else there are specialized machines (firewalls, packet filters, etc.) which you should task with filtering the IP packets for things not to be processed. Put such a system "in front of" the server and route all traffic through it, dropping what should not be processed.
I hope this helps.
bakunin
10 More Discussions You Might Find Interesting
1. Shell Programming and Scripting
I am not what I would call an experienced programmer.
I know some ksh etc..
I need to be able to listening on a port for incoming data on a ultra 10 using solaris 9. Basically all that I need to do at the moment is to log the incoming data on a specific port number.
Any ideas on how I... (6 Replies)
Discussion started by: frustrated1
6 Replies
2. Programming
Hi all,
In need to know why my sample code below that connect to a rlogind (513) fails, but original unix rlogin does not ? (.rhosts is verified to be correct)
I heard rlogin/rsh bind to a reserved port before connecting to the rlogin server. what are they ???
s = socket(AF_INET,... (1 Reply)
Discussion started by: andryk
1 Replies
3. AIX
Hello, we recently configured syslog on one of our machines with the following line in /etc/syslog.conf
*.info /audit/syslog.log rotate time 1d compress
However it does not seem to be logging incoming ftp connections, only outgoing ftp connections? Is there a way to log incoming ftp... (2 Replies)
Discussion started by: zuessh
2 Replies
4. UNIX for Dummies Questions & Answers
hi
I have a bit of a problem i need help with.
I have a script that runs no problems when i run it manually. as soon as i stick in
tester: /app/scripts/run.pl
into /etc/aliases & try to run it by sending a mail it doesnt work.
the output files are owned by daemon, which i dont like & think... (7 Replies)
Discussion started by: jojo77
7 Replies
5. IP Networking
I have a few clients connecting to the server(which is using select()) and theyre trying to send messages to each other. How do I wait for input on stdin and at the same time I wait for data to being sent from the server? Should I use select() in my client too? How exactly though? (1 Reply)
Discussion started by: charlitos
1 Replies
6. Shell Programming and Scripting
Hi,
If I am getting any new mail in my mail box I need an alet message . Please help me to get the script .. (1 Reply)
Discussion started by: pranabrana
1 Replies
7. Solaris
i've been able to log incoming telnet and ssh connections on solaris 9 using the following lines in /etc/syslog.conf
# Telnet connections are logged to auth.notice
auth.notice /var/adm/authlog
# An entry in /etc/profile logs all telnet connections... (2 Replies)
Discussion started by: soliberus
2 Replies
8. Linux
I am using Linux box. i am able to send mails through sendmail to local and other domains.
i am not receving any incoming mails.
dovecot service is running. (4 Replies)
Discussion started by: harishindn
4 Replies
9. Shell Programming and Scripting
Hi all,
I am working on a shell script that blocks all incoming and outgoing connections
for 10 hours. After then hours everything will be unblocked again.
i am using the ipfw command and put it to sleep the amount of time in seconds.
ipfw -q flush
ipfw -f add deny tcp from any to... (8 Replies)
Discussion started by: runtimeError
8 Replies
10. Shell Programming and Scripting
I am having a big problem with lost internet connections with my DSL.
I would like to create a log to be able to show the technician when he comes next week.
I would like for it to only log pings that generate 100% packet loss. Thanks..
This script generates all ping attempts including... (4 Replies)
Discussion started by: drew77
4 Replies
LEARN ABOUT CENTOS
ntalkd
TALKD(8) BSD System Manager's Manual TALKD(8)
NAME
talkd -- remote user communication server
SYNOPSIS
talkd [-dp]
DESCRIPTION
Talkd is the server that notifies a user that someone else wants to initiate a conversation. It acts a repository of invitations, responding
to requests by clients wishing to rendezvous to hold a conversation. In normal operation, a client, the caller, initiates a rendezvous by
sending a CTL_MSG to the server of type LOOK_UP (see <protocols/talkd.h>). This causes the server to search its invitation tables to check
if an invitation currently exists for the caller (to speak to the callee specified in the message). If the lookup fails, the caller then
sends an ANNOUNCE message causing the server to broadcast an announcement on the callee's login ports requesting contact. When the callee
responds, the local server uses the recorded invitation to respond with the appropriate rendezvous address and the caller and callee client
programs establish a stream connection through which the conversation takes place.
OPTIONS
[-d] Debug mode; writes copious logging and debugging information to /var/log/talkd.log.
[-p] Packet logging mode; writes copies of malformed packets to /var/log/talkd.packets. This is useful for debugging interoperability prob-
lems.
SEE ALSO
talk(1), write(1)
HISTORY
The talkd command appeared in 4.3BSD.
Linux NetKit (0.17) March 16, 1991 Linux NetKit (0.17)