Subj : Busy Nodes?
To : Janis Kracht
From : Jeff Smith
Date : Sun Apr 28 2019 12:32 am
Hello Janis,
> Is it from someone like Yandex that fills up your nodes? That started
> happening here.. so I use this line to keep them off the bbs nodes:
> iptables -A OUTPUT -p tcp -m string --string "block-me.com" --algo kmp -j
> REJECT
> That is all one line, and of course you change "block-me.com" to the name of
> the site that is nailing your system... works well here.
Here a domain name doesn't show up, just an IPv4 address. I have started to
add the IP's to block them. I was looking for a way to limit x connection
attempts from the same IP address within x seconds. And decided to use the
command line:
iptables -A INPUT -p tcp --dport 23 -i eth0 -m state --state NEW -m recent
--update --seconds 10 --hitcount 3 -j DROP
Which has seemed to help as my busy nodes issue isn't as bad as it was. At
least BBBS looks to be freeing up the nodes quicker.