找出建立tcp连接的IP并统计次数 netstat -nat|grep ESTABLISHED|awk '{print $5}' |awk -F":" '{print $1}' |sort |uniq -c |sort -nk 1
找出连接数大于3次的IP netstat -nat|grep ESTABLISHED|awk '{print $5}' |awk -F":" '{print $1}' |sort |uniq -c |sort -nk 1 |awk '$1 >3{print $0}'
封IP iptables -I INPUT -s 123.123.123.123 -j DROP 删除该条规则 iptables -I INPUT -s 123.123.123.123 -j DROP
封IP段 iptables -I INPUT -s 127.0.0.0/8 -j DROP
