Using IPTables rules we can block a Single IP address or a block of IP Addresses.
The following command (via ssh) will drop any packet coming from the IP address 1.2.3.4 :
# iptables -I INPUT -s 1.2.3.4 -j DROP
or you can use append
# iptables -A INPUT -s 1.2.3.4 -j DROP
How To Block Subnet (ip.Add.re.ss/subnet):
If your Machines public interface card name is eth1 and if you’d like to block the subnet 10.0.0.0/8 -Use the following syntax:
# iptables -i eth1 -A INPUT -s 10.0.0.0/8 -j DROP
How to View Blocked IP Address(es):
Simply use the following command:
# iptables -L -v
How to Save Blocked IP Address(es) in IPTables:
# service iptables save