Deny dns requests type=ANY using iptables

iptables -A INPUT -p udp --dport 53 -m string --from 50 --algo bm --hex-string '|0000FF0001|' -m recent --set --name dnsanyquery
iptables -A INPUT -p udp --dport 53 -m string --from 50 --algo bm --hex-string '|0000FF0001|' -m recent --name dnsanyquery --rcheck --seconds 60 --hitcount 1 -j DROP
iptables -A INPUT -p udp --dport 53 -m u32 --u32 $(python generate-netfilter-u32-dns-rule.py --qname . --qtype ANY) -j DROP
iptables -A INPUT -p udp --dport 53 -m string --from 50 --algo bm --hex-string '|0000FF0001|' -j DROP
#para bloquear ataque isc.org
#iptables -A INPUT -p udp -m string --hex-string "|03697363036f726700|" --algo bm --to 65535 -j DROP

Logfile NAVigator manual

Linux

find file with regexp

*.*.php equivalent find . -regex ‘.\/.*\..*.php’

Linux, Wordpress

find php files containing binary content

Linux, Wordpress

find all files containing suspect words

Your site got hacked?

Linux

List all DNS records of a given domain with dig

dig is a network administration command-line tool for querying the Domain Name System.

Linux, Synology

Read Synology NAS disk with Ubuntu

recover data on your PC when Synology NAS malfunctions.

Linux

TAR, UNTAR, GZIP

Linux

find open ports in linux

List open ports Using Netstat Command The flag -l tells netstat to print all listening sockets, -t shows all TCP connections, -u displays all UDP connections and -p enables printing of application/program name listening on the port. To print numeric values rather than service names, add the -n flag. netstat -ltup Using ss Command ss -lntu Using Nmap Command Installation apt install nmap [On Debian/Ubuntu] […]

Linux

Related Posts