netstat -ntu | awk '{print $5}' | cut -d: -f1 | sort | uniq -c | sort -rn |awk -F " " '$1> 200 {print $2}' |xargs -i firewall-cmd --permanent --zone=public --add-rich-rule="rule family="ipv4" source address="{}/24" port protocol="tcp" port="80" reject"
firewall-cmd --reload
crontab -l */1 * * * * ~/data/ff.sh >/dev/null 2>&1
发表回复