Is it possible to not allow certain IPs to even reach, scan or visit an IP?

I have had a report of

**Unmatched Entries**
scanned from 200.207.188.80 with SSH-1.0-SSH_Version_Mapper. Don't panic.scanned from 200.207.188.80 with SSH-1.0-SSH_Version_Mapper. Don't panic.

In my log watch. Can I block certain people from even accessing my box? If so how...

J

anyone...anyone?

setup firewall rules.

Its not always wise to ban every odd person who should happen to scan your server. But doing so is pretty simple.

Iptables is the best firewall solution availible for linux - it by far surpasses its cousin, ipchains. Below is an example DROP rule:

iptables -A INPUT -s OFFENDING-IP -d 0/0 -j DROP