[Cialug] My Ubuntufoo is apparently lacking, ..
L. V. Lammert
lvl at omnitec.net
Thu Jan 25 20:18:50 UTC 2024
On Thu, 25 Jan 2024, Mike Hughes wrote:
> I found that adding an IP to a block rule wasn't effective without resetting the firewall. Essentially the statefullness of the firewall allows existing connections to continue despite a new block rule being added.
> Does UFW have a reload command?
>
In this case, the problem was that the rule was not inserted high enough
in any chain, .. my sledgehammer approach was:
iptables -I INPUT -s 136.243.228.198 -j REJECT
Inserted at the top of the INPUT chain, which works fine.
TFTR!
More information about the Cialug
mailing list