Blocking SSH Brute Force attempts using iptables

After my recent break in I have looked into ways of protecting SSH and my server resources. I employ fail2ban on my main server, it has the resources to run such a programme - my Linksys NSLU2’s however do not. The solution is to use iptables to limit the number of connections any host can make in a given time frame. I wrote up a quick how to on this over at my wiki. Enjoy.

Tags: , , , ,

One Response to “Blocking SSH Brute Force attempts using iptables”

  1. ALeX Says:

    Another possible solution is use iptables to count new connection.
    You can see an exemple of iptables comand here:
    http://www.logocomune.eu/blog/2008/06/nslu2debian-brute-force-attach-ssh.php

Leave a Reply


Content Copyright © 2005-2008 Chris Smith. All Rights Reserved.