[mod-security-users] apache 2 mod_security iptables
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
[mod-security-users] apache 2 mod_security iptables
|
From: Jeffery W. <djc...@gm...> - 2020-12-26 08:33:38
|
im looking for some people who host http servers (apache/nginx) and who are familiar with mod_security and iptables firewalls the setup that I am after is if an IP address hits my website and does a typical vuln scan my web server sends them back no response and they silently get added to an iptables ipset blacklist that lasts for 1 week I already have mod_security (OWASP RULES) on my apache 2 server at (192.168.2.10) and a pfsense style firewall at (192.168.2.1) kind of like a web server honeypot if you will my current setup is already pretty powerful if you even send a simple TCP SYN packet to port 21,22 or even 23 you automatically get added to my routers firewall and dropped for 7 days for both in and outbound forgive me for asking alot but I really want to buckle down on these stupid automated vuln scanners and keep them off my network I have already looked into things like fail2ban but that only protects the webserver itself and does not integrate with my routers firewall at all protecting the network as a whole |
