Iptables

Block SSH brute force attacks

With logging:

iptables -N LOGDROP
iptables -A LOGDROP -j LOG
iptables -A LOGDROP -j DROP
iptables -I INPUT -p tcp --dport 22 -i eth0 -m state --state NEW -m recent --set
iptables -I INPUT -p tcp --dport 22 -i eth0 -m state --state NEW -m recent  --update --seconds 60 --hitcount 5 -j LOGDROP

Without logging:

iptables -I INPUT -p tcp --dport 22 -i eth0 -m state --state NEW -m recent --set
iptables -I INPUT -p tcp --dport 22 -i eth0 -m state --state NEW -m recent  --update --seconds 60 --hitcount 5 -j DROP

Block entire subnets

iptables -A INPUT -s 58.218.0.0/16 -j DROP

Block specific IP address

iptables -A INPUT -s 12.23.34.45 -j DROP

Iptables

Block SSH brute force attacks

Block entire subnets

Block specific IP address

Navigation menu

Personal tools

Namespaces

Variants

Views

More

Search

Navigation

Tools