Skip to content

feapoi/tcpdump_filter

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
README.md
README.md
 
 
blacklist.list
blacklist.list
 
 
do_tcpdump.sh
do_tcpdump.sh
 
 
filter_black_list.py
filter_black_list.py
 
 
transition.sh
transition.sh
 
 

Repository files navigation

Overview

tcpdump_filter is a syn-flood monitor tool base on tcpdump. It can auto filter attacker ip address.

Usage

create log folder

mkdir log

start do_tcpdump.sh. it can generate log per hour.

./do_tcpdump.sh &

start cron and filter log.

crontab -e
* */1 * * * /usr/local/src/tcpdump_filter/transition.sh > /dev/null 2>&1 &
systemctl reload crond

About

use tcpdump filter syn-flood ip

Resources

Readme
Activity

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages