I just run this command
iptables -A INPUT -s 1.1.1.1 -p TCP -j DROP
Do i have to reset a service or something like that? It does not seems to work because when i use netstat -antp i can still see the ip i just dropped
Asked
Active
Viewed 26 times
1 Answers
1
The TCP connection may still be kept open until the timeouts (up to 5 minutes if I remember correctly), but the traffic itself should be dropped (eg. there should be no data flowing).
Joel C
- 2,958
- 2
- 15
- 18
-
I think the thing was the iptables -A which adds the ip at the end of the list, after that i rerun it with iptables -I – Gianni Di Falco Jan 13 '16 at 07:39
-
1That would also do it. – Joel C Jan 14 '16 at 16:58