Add: route add -host attacker_ip 127.0.0.1 -blackhole
Remove: route delete -host attacker_ip 127.0.0.1 -blackhole
The above will route all traffic from the “attacker_ip” to a blackhole.
This is useful when you see someone relentlessly attacking any daemon on your server (ssh, http, ftp, etc).
[ad#Google Adsense]