Results 1 to 5 of 5

Thread: Iptables block ip address

  1. #1
    Join Date
    Apr 2009

    Iptables block ip address

    What are the command to block block ip address from Iptables. What I need to do is, to block access from some ip addresses in my network. Is there any command from router to block ip address. Do i need to configure router in access list mode to block ip address. Any recommendations and suggestions are appreciated.

  2. #2
    Join Date
    Jan 2006

    Re: Iptables block ip address

    You can specify IP ranges and networks with iptables to block ip address. For example:
    # iptables -A INPUT -s -j DROP
    It would block all IP addresses from to (a Class C subnet). You can find what IP block an IP is contained within by using the WHOIS lookup at ARIN.

  3. #3
    Join Date
    Jan 2006

    Re: Iptables block ip address

    IP addresses can be blocked by administrators in the same way as registered users are. IP blocks can be more powerful and effective, but also have additional ramifications. Block IP Address will allow you to prevent security audit from scanning your IP address.
    iptables -I INPUT -s -j DROP
    This command will simply drop any packet coming from the address

  4. #4
    Join Date
    Jan 2009

    Re: Iptables block ip address

    Administrators can block ranges of IP addresses, if you would like to prevent an individual or a group of individuals on a certain IP range from accessing your site, you can selectively deny access to them. iptables block ip when you use the following command
     <Limit GET HEAD POST>
        order allow,deny
        deny from
        deny from 19.133.153
        deny from 25.2
        allow from all

  5. #5
    charles54 Guest

    Re: Iptables block ip address

    1. Introduction

    Intrusion detection and incident response are the key components in securing assets for any organization. What actually is an Intrusion? How to detect intrusion? And how to response on the intrusion are our key areas for this article.

    In order to detect intrusions you must be aware of the normal behavior of your network infrastructure so that any abnormal behavior can be seen easily like a drop of blue ink in a glass of water and you have to cure that intrusion else it will vanished. There are many systems and scenarios by which you can detect intrusions in your network infrastructure.
    Intrusion Detection System (IDS) can detect intrusions for a single host or for a complete subnet in a switched environment; deployment of IDS depends on the design of your network infrastructure. To make this article applicable let me explain you how IDS works in a switched environment.

Similar Threads

  1. Does anyone knows to block UDP protocols in iptables in ubuntu
    By Madirakshi in forum Networking & Security
    Replies: 5
    Last Post: 13-11-2010, 11:06 PM
  2. Block ip range using iptables in Ubuntu 9.04
    By UbuntU-ME in forum Operating Systems
    Replies: 3
    Last Post: 29-07-2009, 10:15 PM
  3. How can I block or ban Ip address range?
    By Drogbaa in forum Windows Software
    Replies: 3
    Last Post: 18-06-2009, 11:12 AM
  4. Invalid block address
    By Mega Member in forum Hardware Peripherals
    Replies: 3
    Last Post: 04-05-2009, 05:38 PM
  5. How to Filter Mac Address Using Iptables ?
    By Nobleman in forum Networking & Security
    Replies: 3
    Last Post: 28-02-2009, 06:10 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts