help with firewall ban
I need to block someone from accesing my ded box. I have linux firewall up and running. Currently accepting all connections on eth0.
1)How can I ban this person completely from accesing all ports or certain ports like 21, 22, 80, 10000 and 27960?
2) I have list of ips that person used in last six months, but is there a way to block his whole ISP like 67.54.*.* ?
3) What is the exact command I should use on ssh?
-A INPUT -i eth0 -p tcp -s 67.54.*.* --destination-port 27960 -j REJECT
???
4) Which one should I use drop or reject?
Last time I tried to ipchain some hacker I blocked all access to box from net and it costed me money to make DC fix it, please help me out. Thx in advance
