Security Basics mailing list archives
Re: Syncing iptables rules between two servers
From: Ansgar -59cobalt- Wiechers <bugtraq () planetcobalt net>
Date: Mon, 10 Apr 2006 17:31:14 +0200
On 2006-04-09 Lars Solberg wrote:
Is there anyone that know about how I can "sync" iptables rules on two different servers? The plan is to have (on one of the servers) a script that automaticly block ip adresses with iptables depending on different conditions. When that ip adress is blocked I want it to automaticly be blocked on another server to.
Maybe you can use iptables-save, iptables-restore and rsync to achieve this. However, IMHO automatic network shunning is a Very Bad Idea(tm), so I'd advise strongly against this. Regards Ansgar Wiechers -- "All vulnerabilities deserve a public fear period prior to patches becoming available." --Jason Coombs on Bugtraq ------------------------------------------------------------------------- This List Sponsored by: Webroot Don't leave your confidential company and customer records un-protected. Try Webroot's Spy Sweeper Enterprise(TM) for 30 days for FREE with no obligation. See why so many companies trust Spy Sweeper Enterprise to eradicate spyware from their networks. FREE 30-Day Trial of Spy Sweeper Enterprise http://www.webroot.com/forms/enterprise_lead.php --------------------------------------------------------------------------
Current thread:
- Syncing iptables rules between two servers Lars Solberg (Apr 11)
- Re: Syncing iptables rules between two servers Gaz Wilson (Apr 11)
- Re: Syncing iptables rules between two servers ilaiy (Apr 11)
- Re: Syncing iptables rules between two servers Thomas Howard Uphill (Apr 11)
- Re: Syncing iptables rules between two servers Stephen Barron (Apr 13)
- Re: Syncing iptables [state, was rules] between two servers Keith Morgan (Apr 20)
- Re: Syncing iptables rules between two servers Stephen Barron (Apr 13)
- Re: Syncing iptables rules between two servers Ayaz Ahmed Khan (Apr 11)
- Re: Syncing iptables rules between two servers Christopher Jastram (Apr 11)
- Re: Syncing iptables rules between two servers Jason Nicholls (Apr 11)
- Re: Syncing iptables rules between two servers Stoimen Gerenski (Apr 11)
- Re: Syncing iptables rules between two servers Ansgar -59cobalt- Wiechers (Apr 11)
- Re: Syncing iptables rules between two servers Drew Leske (Apr 11)
- Re: Syncing iptables rules between two servers Bosse Klykken (Apr 11)
- RE: Syncing iptables rules between two servers Burton Strauss (Apr 11)
- Re: Syncing iptables rules between two servers Dirk Dierickx (Apr 13)
- <Possible follow-ups>
- Re: Syncing iptables rules between two servers Bob Toxen (Apr 11)
- RE: Syncing iptables rules between two servers Jordan.Dallas (Apr 11)
- RE: Syncing iptables rules between two servers Hayes, Ian (Apr 11)
- Re: Syncing iptables rules between two servers Lars Solberg (Apr 12)
- Re: Syncing iptables rules between two servers bluehavana (Apr 12)
- Re: Syncing iptables rules between two servers Przemyslaw Skowron (Apr 12)
(Thread continues...)