Best way to block IPs completely from Linode?
Would it be best to install a full firewall product? My main concern is something like iptables seems to need a custom kernel, and I do not know anything about UML or the way the kernel works in a UML environment.
I am very comfortable re-compiling kernels on normal boxes, but I am not sure how this would affect a linode.
Anyone have any suggestions?
8 Replies
I'm not quite sure how to use it myself, but I can tell you that it's enabled and works - at least on my Linode, and I haven't done anything special with iptables.
Any ideas? I coudl emerge one of the various kernel sources but I would wonder if it is different the the actual kernel being used on the linode.
@Crisis:
I am wondering what the best way to block certains IPs from a Linode would be.
If you already know which ips you want to block, put the ips in /etc/hosts.deny . (ALL: aaa.bbb.ccc.ddd)
@Crisis:
Hmm I tried to emerge iptables in gentoo on my linode, but it would not compile because it could not access the kernel source.
Lame bug in Gentoo. From another Linode user: "One work-around is to comment out the check_KV function in the iptables build."
All it wants is version.h…
-Chris
@Crisis:
Will /etc/hosts.deny block all traffic from those IPS (TCP, UDP, ICMP etc) ?
man hosts_access