Is there a way to reject an incoming IP connection made to BinkD?
--- Mystic BBS v1.12 A46 2020/08/26 (Windows/32)
* Origin: Agency BBS | Dunedin, New Zealand | agency.bbs.nz (3:770/100)

Hi Paul,

On 2021-05-10 21:21:21, you wrote to All:

Is there a way to reject an incoming IP connection made to BinkD?

In your firewall!?

Bye, Wilfred.
--- FMail-lnx64 2.1.0.18-B20170815
* Origin: FMail development HQ (2:280/464)

Hi Paul.

10 May 21 21:21, you wrote to All:

Is there a way to reject an incoming IP connection made to BinkD?

Fail2ban?

'Tommi

--- GoldED+/LNX 1.1.5-b20210402
* Origin: nntps://news.fidonet.fi (2:221/1)

Hello Paul;

Is there a way to reject an incoming IP connection made to BinkD?

/path/to/iptables -I INPUT 1 -s x.x.x.x -p tcp --dport 24554 -j DROP
where x.x.x.x = remote IP.
That'll give you a priority filter on that IP for binkp.

... Internal Error: The system has been taken over by sheep at line 19960
--- MultiMail/Linux v0.52
* Origin: SBBS - Carnage! Hartford, Ct (1:142/103)

On 10 May 2021 at 04:39p, Brian Rogers pondered and said...

/path/to/iptables -I INPUT 1 -s x.x.x.x -p tcp --dport 24554 -j DROP where x.x.x.x = remote IP.

Many thanks for the info / help :)
--- Mystic BBS v1.12 A46 2020/08/26 (Windows/32)
* Origin: Agency BBS | Dunedin, New Zealand | agency.bbs.nz (3:770/100)

Hello Paul;

Paul Hayton wrote to All <=-

/path/to/iptables -I INPUT 1 -s x.x.x.x -p tcp --dport 24554 -j DROP
where x.x.x.x = remote IP.

Many thanks for the info / help :)

Glad to offer the assistance. Scripts like fail2ban are "ok" but one really should learn the apps that scripts such as those control. If you wish to
block an IP from accessing anything on your box, drop from the "-p .. to 24554" of the above line. If you just wish to append the filter you can use -A instead of -I too. If your bink is running on a different port than change
the --dport to what your bink is.

... Heisenberg may have slept here.
--- MultiMail/Linux v0.52
* Origin: SBBS - Carnage! Hartford, Ct (1:142/103)

Paul Hayton wrote to All <=-

/path/to/iptables -I INPUT 1 -s x.x.x.x -p tcp --dport 24554 -j DROP where x.x.x.x = remote IP.

Many thanks for the info / help :)

Glad to offer the assistance. Scripts like fail2ban are "ok" but one really should learn the apps that scripts such as those control. If you wish to block an IP from accessing anything on your box, drop from the "-p .. to 24554
of the above line. If you just wish to append the filter you can use -A instead of -I too. If your bink is running on a different port than change the --dport to what your bink is.

How would you format it if you want to drop a whole range or block of IP addresses?

Thanks!
Mike


* SLMR 2.1a * What do you mean, QWK?? It took me over an hour to read!!
--- SBBSecho 3.12-Linux
* Origin: capitolcityonline.net * Telnet/SSH:2022/HTTP (1:2320/105)

Hey Mike;

Dumas Walker wrote to BRIAN ROGERS <=-

How would you format it if you want to drop a whole range or block of
IP addresses?

I made a utilty for myself which I call "ipblock". It handles whatever string
I wish to enter whether it's IPv4 or IPv6, a single IP or a block. It writes
to a file called /etc/blocked.ips which is then called upon bootup as part of my firewalling. In doing a whole block enter in the cidr shorthand. Ex: /sbin/iptables -I INPUT -s 49.7.0.0/16 -j DROP
/sbin/iptables -I OUTPUT -d 49.7.0.0/16 -j DROP
/sbin/iptables -I FORWARD -s 49.7.0.0/16 -j DROP

This filters a scanbot block from my box. :)

Further questions, feel free to netmail me as this really isn't Bink information. I'll be happy to try and answer. You can also add logging
and such if you desire. I don't feel that if I'm denying a block that I
need to see my work did the job I programmed it to do though.

... Direct from the Ministry of Silly Walks
--- MultiMail/Linux v0.52
* Origin: SBBS - Carnage! Hartford, Ct (1:142/103)

* Originally in BINKD
* Crossposted in INTERNET
* Crossposted in TCPIP

Hi Brian,

On 2021-05-11 11:11:00, you wrote to Dumas Walker:

How would you format it if you want to drop a whole range or block of
IP addresses?

I made a utilty for myself which I call "ipblock". It handles whatever string I wish to enter whether it's IPv4 or IPv6, a single IP or a block. It writes to a file called /etc/blocked.ips which is then called upon bootup as part of my firewalling. In doing a whole block enter in the cidr shorthand. Ex:
/sbin/iptables -I INPUT -s 49.7.0.0/16 -j ROP
/sbin/iptables -I OUTPUT -d 49.7.0.0/16 -j DROP
/sbin/iptables -I FORWARD -s 49.7.0.0/16 -j DROP

This filters a scanbot block from my box. :)

Further questions, feel free to netmail me as this really isn't Bink information. I'll be happy to try and answer.

Or take it to the INTERNET and/or TCPIP areas, so we can all learn! ;)

You can also add logging and such if you desire. I don't feel that if
I'm denying a block that I need to see my work did the job I
programmed it to do though.

Bye, Wilfred.
--- FMail-lnx64 2.1.0.18-B20170815
* Origin: FMail development HQ (2:280/464)

Or take it to the INTERNET and/or TCPIP areas, so we can all learn! ;)

If I have any more questions I will try that. :)

Mike


* SLMR 2.1a * Computer Hacker wanted. Must have own axe.
--- SBBSecho 3.12-Linux
* Origin: capitolcityonline.net * Telnet/SSH:2022/HTTP (1:2320/105)