DDOS-Deflate won't update iptables

Phil

5/6/24, 9:40 AM

I am using DDoS-Deflate (https://github.com/jgmdev/ddos-deflate) in my CentOS 7 server. I installed it successfully. I use iptables as the firewall. The DDoS-Deflate bash script could detect abnormal http requests and log the IP. But the iptables is not updated and so the IP is not blocked.

Suppose the IP is a.b.c.d The command in the DDoS-Deflate bash looks like:

## Original script: $IPT -I INPUT -s "$1" -j DROP
iptables -I INPUT -s a.b.c.d -j DROP

If I run the above-mentioned command manually using root account, the iptables will update and block the IP. What may be the issue for this?

Thanks.

0 + 1

iptables

ddos

deflate

centos7

A.B

5/6/24, 11:31 AM

Check logs, including audit/selinux logs. Have your script create debug logs by adding (temporarily only) at the start something like: `exec 2>>/tmp/debug ; set -x`.

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: DDOS-Deflate won't update iptables

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.