[cod] ip blocker program for windows??

Robert Mount rmount at pobox.com
Mon Mar 5 09:43:43 EST 2012


It's no iptables, but the the Windows firewall has come a long way.
Here's how to do that (untested):

netsh advfirewall firewall add rule name="Block local port xyz" dir=in
protocol=tcp localport=xyz remoteip=* action=block

--Rob

On Mon, Mar 5, 2012 at 9:33 AM, Boyd G. Gafford Ph.D.
<drboyd at westportresearch.com> wrote:
> Hey Robert, does netsh let you drill down to the destination port, or does
> it only work with IPs?
>
> Thanks,
>
>   Boyd
>
>
>
>
> On 03/04/2012 09:12 PM, Robert Mount wrote:
>
> Windows firewall:
> netsh advfirewall firewall add rule name="Block a.b.c.d" action=block
> enable=yes localip=any remoteip=a.c.b.d
>
> Back in the 2003 days i used pglite with great success.  Pglite was a
> "lite" version of peer guardian.  I even had it setup with a
> centralized banlist (using a win32 version of wget and a schedule
> task).
>
> The 64bit version of pglite doesn't work on 2008 R2.  PGlite continued
> life as Peerblock, but i've never used it on a server OS.
>
> --Rob
>
> On Sun, Mar 4, 2012 at 9:15 PM, tom nikitopoulos <tomdagreek at gmail.com>
> wrote:
>
> Hi all-
> Any suggestions for a program to block individual ips?
> I know this is a linux forum.. I am starting to add ips to iptables on my
> nix boxes. Just hate to subscribe to another forum. I have many.
>
> Picked this up from routers logs yesterday. Was surprised.
>
> [DoS Attack: RST Scan] from source: 98.148.31.125, port 4746, Sunday, March
> 04,2012 12:17:15
>
> Tom-
>
> _______________________________________________
> cod mailing list
> cod at icculus.org
> http://icculus.org/mailman/listinfo/cod
>
> _______________________________________________
> cod mailing list
> cod at icculus.org
> http://icculus.org/mailman/listinfo/cod
>


More information about the cod mailing list