How to Ban a country with iptables

Block a country with iptablesI’m stil lreceiving huge spam/unwanted traffic from russia.
I want to ban with iptables
I already tried to stop it using fail2ban but they continuosly change their IP Address so there is no repetitive behavior wich fail2ban can trace.
This means that even if i setup rules for fail2ban they can do the first connection anyway wasting a little of my server resources.
I want to stop it now, so i decided to do it the bad way:using iptables.
Continue reading “How to Ban a country with iptables”

Incoming search terms:

  • iptables mac osx block china ip (14)
(Visited 7,025 times, 1 visits today)

Replacing IP Address in Apache2 config files with SED

replacing ip address in all files with linux sedSuppose i just mirrored my vps machine (starting from a clone and then rsync-ing all needed files) with rsync. Obviously i need to change the IP Address value contained into all the config files, but I’m lazy.
So, let’s use “SED” to do it at once, with a single line command.
I need to replace the IP Address “192.168.100.5” with “192.168.100.4” in all files contained in /etc/apache2/*
Continue reading “Replacing IP Address in Apache2 config files with SED”

(Visited 1,857 times, 1 visits today)

**[Quick Solution] for ssh: connect to host 192.168.100.2 port 22: Connection refused and ssh_exchange_identification: read: Connection reset by peer

untitledSo i just faced this, and i immediatelly got it. It’s ARP stuff.
If you are trying to connect to your ssh remote shell and you see this:

MacBook-Pro-di-giuseppe-urso:~ giuseppeurso$ ssh -l giuseppe 192.168.100.67
ssh: connect to host 192.168.100.67 port 22: Connection refused
MacBook-Pro-di-giuseppe-urso:~ giuseppeurso$ ssh -l giuseppe 192.168.100.149
ssh_exchange_identification: read: Connection reset by peer

It means Continue reading “**[Quick Solution] for ssh: connect to host 192.168.100.2 port 22: Connection refused and ssh_exchange_identification: read: Connection reset by peer”

Incoming search terms:

  • ** QuickSolution forssh:connecttohost192 168 100 2port22:Connectionrefusedandssh_exchange_identification:read:Connectionresetbypeer|GiuseppeUrsoBlog (48)
  • raspbmc ssh connection refused (22)
  • raspberry pi ssh connection refused (17)
  • ssh_exchange_identification: (13)
  • human2me (1)
  • today74s (1)
  • chiefnzi (1)
  • century5i1 (1)
  • businessigw (1)
  • basketftv (1)
(Visited 11,363 times, 1 visits today)

DD-wrt internal client NAT to port redirected internal host with external address

My messy routers: linksys dd-wrt enabled and Cisco epc3925 bridged.

After configuring your Internet router to act as bridge (mine is a Bridged Cisco epc3925), basically you configured your dd-wrt enabled device in order to map some external ports to one or more internal hosts so you can expose a webserver listening on port 80 or a ssh instance on port 22 using your public ip address given by your internet company to your router, or, better you can even use an FQDN like home-haarlem.giuseppeurso.net to point dns records to your home internet address. Cool. Continue reading “DD-wrt internal client NAT to port redirected internal host with external address”

(Visited 2,416 times, 1 visits today)

How to Enable real Bridge mode for UPC Cisco EPC-3925 with HTML Injection

A.K.A. Public (and probably static) IP address for residential UPC customers.

I have a huge bandwidth internet connection, so why don’t let my friends download or upload files to my house, it makes feel us closer, it’s funny to share things, it can be actually useful in some cases.

I live in the Netherlands and here are several companies which offer different internet connections, but the common element is that houses are built with fiber channel in mind, differently from Italy, that’s why we have actually 50Mbit in download and 4Mbit in upload. For this reason I want to try to discover, for example, whether the ip address is a static one (still the same in two months) and other funny things.
So the first thing to do is to check if the router distributed by UPC can actually act as a bridge so I can manage myself all incoming connections having a public ip address. Also I have a spare Cisco E2000 with dd-wrt that eventually can assume the public ip while the cisco turns in a simple bridge. Continue reading “How to Enable real Bridge mode for UPC Cisco EPC-3925 with HTML Injection”

Incoming search terms:

  • cisco epc3925 (449)
  • cisco epc3925 bridge mode (164)
  • epc3925 (94)
  • cisco epc 3925 (50)
  • cisco epc3925 bridge (48)
  • cisco epc3925 firmware (47)
  • epc3925 firmware (36)
  • cisco 3925 bridge mode (28)
  • EPC 3925 (26)
  • epc3925 bridge (25)
(Visited 66,381 times, 1 visits today)

Shineisp Installation Log / mini How to

Shineisp is an italian open source WHM (Web Hosing Management) and we are going to give it a try. I recall i alredy installed it last year, but the machine had a poor hardware and shineisp is a greedy MVC phpmysql program. For this “instalfiguration” we assume we are on Debian Squeeze and we will cover the steps needed to get shineisp up and running in 10 minutes.

Continue reading “Shineisp Installation Log / mini How to”

(Visited 2,301 times, 1 visits today)