On Thu, Aug 19, 2021 at 10:42:42PM -0400, Ruben Safir wrote:
> anyone know a solution to this that works
>
> /sbin/iptables -I INPUT -p udp --dport 53 -m string –hex-string
> '|03|www|08|pizzaseo|03|com|' –algo bm -j DROP
> iptables v1.8.7 (legacy): unknown option "--dport"
> Try `iptables -h' or 'iptables --help' for more information.
>
> No docs I read dislike -dport or --dport
>
> the objective here is to drop remote inquiries for pizzaseo.com which
> seems to be an attach
The solution is to use the iptables-legacy binary instead of the iptables one.
I would like to encourage you to use nftables instead of iptables
which is deprecated for years now and you will gain benefit in
performance and ease of maintenance.
Also, since it is an input rule I guess that you are hosting a DNS on
this machine. Isn't your DNS capable of using Response Policy Zones or
even rules hard-coded in your configuration?
--
qontinuum
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 228 bytes
Desc: not available
URL: <https://lists.artixlinux.org/archives/artix-general/attachments/20210820/54b37e80/attachment.sig>
More information about the artix-general
mailing list