LinuxQuestions.org
Visit Jeremy's Blog.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
Reload this Page [SOLVED] iptables string module
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 09-10-2015, 05:43 AM   #1
bonnydeal
Member
 
Registered: Feb 2006
Posts: 47

Rep: Reputation: 29
iptables string module

Hi

I am using the same iptables rules on 2 different linux installations:

1. centos 5 / 2.6.18-400.1.1 iptables v1.3.5
2. centos 6 / 2.6.32-504.3.3 iptables v1.4.7

rules
Code:
-A INPUT -p tcp -m tcp --dport 80 -j FW-Web-1 
...
-A FW-Web-1 -m string --string "GET /w00tw00t" --algo bm --to 70 -j DROP
...
This is working fine on the centos 5 setup.
However on centos 6 the match does not work and the packet does not get dropped.

Any ideas?

Thanks in advance.
 
Old 09-10-2015, 07:17 AM   #2
bonnydeal
Member
 
Registered: Feb 2006
Posts: 47

Original Poster
Rep: Reputation: 29
In desperation i tried:

Code:
-A FW-Web-1 -m string --string "GET /w00tw00t" --algo kmp --to 70 -j DROP
... and it works.
 
1 members found this post helpful.
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
iptables filter by string value mkools Linux - Security 1 09-26-2014 01:04 PM
iptables - string matching harshall Linux - Networking 3 03-07-2013 02:15 PM
String filtering using IPTABLES bobbera Linux - Server 5 06-25-2008 08:27 AM
iptables string module on FC5 st3reo Fedora 2 07-16-2006 07:25 AM
iptables string module on RHEL st3reo Linux - Enterprise 6 07-09-2006 04:26 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 06:07 AM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration