FYHTECH

FUN WITH LINUX

Route to nowhere - Blocking attackers using Nullroutes

4 February 2016

If someone attacks a linux-system, most administrator would block the ip-address of the attacker using iptables-rules. But there is another method to block the address of an attacker: nullroutes. Nullroutes are routes to nowhere

Routing to loopback

Its possible to just route traffic to the loopback interface:

route add ATTACKERS-IP gw 127.0.0.1 lo

Rejecting route

Using the route-command we can also add a reject-router:

route add -host ATTACKERS-IP reject
[ Linux  Sysadmin  Security  Network  Firewall  ]
User image

My name is Wolfgang Hotwagner. I am a Linux and Information Security enthusiast from Vienna. This blog is about my journey through Computer Science.

Tag Cloud

Backup Fun Linux git Docker Proxy CVE Blog apache C Network Security Certification One-Liner Web Shell LVM Kernel TerminalEmulator Postgresql Tricks CLI xmas Zsh Sysadmin News Ansible Suricata Hardware Virtualization vim Mail Perl Email Crypto Anniversary Raspberry Ruby External openssl Database ccc Toscom Bash Puppet Open-Source Multimedia Nagios logrotate PHP Debian Mathematics HackADay Software-Raid Btrfs Desktop Downloads Firewall Programming

Recent Posts

Except where otherwise noted, content on this site is licensed under a Creative Commons Attribution 3.0 Unported License.

Copyright 2015-present Hoti