Re: SSH and iptables

From: Josef Puerstinger <puerst_web@xxxxxxxxxx>
Date: Thu, 16 Mar 2006 13:48:18 +0000

Hi,

Steven Jones wrote:

When an SSH connection attempt (at the standard port) from a given IP
address fails, no further SSH connections will be accepted from that IP
address for 60 seconds.

If, on the other hand, the connection attempt succeeds, then that IP
address is free to start as many (successful) SSH connections within the
next 60 seconds (and beyond, in fact).

For this job I use the skript from http://fail2ban.sourceforge.net
With default settings it will block any traffic from an address from
which the authentification fails 3 times within 10 minutes for another
10 minutes.

HTH,
Josef
.

References:
- SSH and iptables
  - From: Steven Jones

Prev by Date: Re: My Linux doesn't use DNS protocol from a Windows server
Next by Date: Re: WiFi under Linux - rant no 7
Previous by thread: Re: SSH and iptables
Next by thread: netcat for win2k
Index(es):
- Date
- Thread

Relevant Pages

Re: IOSTAT=127
... Just the opposite. ... while logged in via ssh connections from other computers. ... and it fails for him. ... allow User C to write to Disk B, and Program D allows User C to write ...
(comp.lang.fortran)
Re: SSH and iptables
... address fails, no further SSH connections will be accepted from that IP ... I am aware of numerous iptables rules that can do ... Are these rules able to tell between successful and nonsuccessful ...
(comp.os.linux.networking)
Re: SSH and iptables
... When an SSH connection attempt (at the standard port) from a given IP ... address fails, no further SSH connections will be accepted from that IP ... I'm not taking into account the possible cpu overhead related ...
(comp.os.linux.networking)
SSH and iptables
... I am looking for iptables rules to do the following: ... When an SSH connection attempt (at the standard port) from a given IP ... address fails, no further SSH connections will be accepted from that IP ...
(comp.os.linux.networking)