8 Jun
2017
8 Jun
'17
10:11 p.m.
All,
Here my iptables rule (I didn't want to install fail2ban):
# RATE LIMIT MULTIPLE SSH ATTEMPTS FOR FIVE MINUTES
# iptables -I FORWARD -p tcp --dport 22 -i eth0.2 -m state --state NEW
-m recent --name ssh --update --seconds 300 --hitcount 5 -j DROP
# iptables -I FORWARD -p tcp --dport 22 -i eth0.2 -m state --state NEW
-m recent --name ssh --set
- KB3VWG
PS: if this isn't open to the public, you can just change the port to
something other than 22 - Security Through Obscurity at its best!
This is how I protect against brute force/DoS attacks