Firewall

Shorewall: setup Geo-IP filtering

shorewall - iptables made easy

Sometimes it is neccessary to filter packets based on their geo-ip location. Shorewall can make use of the xt_geoip-module for iptables. In this article I will explain how to setup this module on Debian.

Read more about Shorewall: setup Geo-IP filtering
Add new comment

Route to nowhere - Blocking attackers using Nullroutes

If someone attacks a linux-system, most administrator would block the ip-address of the attacker using iptables-rules. But there is another method to block the address of an attacker: nullroutes. A Nullroute simply directs to nowhere.

Read more about Route to nowhere - Blocking attackers using Nullroutes
Add new comment

Firewall Evasion-Techniques

I found some very interesting papers about firewall evasion:

Read more about Firewall Evasion-Techniques
Add new comment

Subscribe to Firewall