Allowing the home network and AT&T IPv4 ranges. Logging everything else.
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 |
iptables -A INPUT -p tcp --dport 22 -s 192.168.0.0/16 -j ACCEPT iptables -A INPUT -p tcp --dport 22 -s 107.106.0.0/18 -j ACCEPT iptables -A INPUT -p tcp --dport 22 -s 107.106.120.0/22 -j ACCEPT iptables -A INPUT -p tcp --dport 22 -s 107.106.124.0/22 -j ACCEPT iptables -A INPUT -p tcp --dport 22 -s 107.106.128.0/18 -j ACCEPT iptables -A INPUT -p tcp --dport 22 -s 107.106.184.0/22 -j ACCEPT iptables -A INPUT -p tcp --dport 22 -s 107.106.188.0/22 -j ACCEPT iptables -A INPUT -p tcp --dport 22 -s 107.106.192.0/18 -j ACCEPT iptables -A INPUT -p tcp --dport 22 -s 107.106.64.0/18 -j ACCEPT iptables -A INPUT -p tcp --dport 22 -s 107.107.0.0/18 -j ACCEPT iptables -A INPUT -p tcp --dport 22 -s 107.107.128.0/18 -j ACCEPT iptables -A INPUT -p tcp --dport 22 -j LOG --log-prefix "SSH DROP: " iptables -A INPUT -p tcp --dport 22 -j DROP |
