SEARCH
TOOLBOX
LANGUAGES
SSH Blocking

SSH Blocking

From Wiki

Jump to: navigation, search

I know they won't guess my ssh password, but damn I just get annoyed when people continue to connect to my SSH port. Who knows maybe they will randomly guess it... I use the following to stop the brute force attempts via rate-limiting. Its basically just as effective as watching the SSH logs.

sudo iptables -A INPUT -i ethX -p tcp --dport 22 -m state --state NEW -m recent --set --name SSH
sudo iptables -A INPUT -i ethX -p tcp --dport 22 -m state --state NEW -m recent --update --seconds 60 --hitcount 8 --rttl --name SSH -j DROP


Retrieved from "http://woodzy.com/w/index.php/SSH_Blocking"