Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #ssh_blocker
- / ip firewall filter
- add chain=input protocol=tcp dst-port=22 src-address-list=black_list action=drop \
- comment=”drop ssh brute forcers” disabled=no
- add chain=input protocol=tcp dst-port=22 connection-state=new \
- src-address-list=ssh_stage3 action=add-src-to-address-list address-list=black_list address-list-timeout=1d \
- comment=”” disabled=no
- add chain=input protocol=tcp dst-port=22 connection-state=new \
- src-address-list=ssh_stage2 action=add-src-to-address-list address-list=ssh_stage3 address-list-timeout=1m \
- comment=”” disabled=no
- add chain=input protocol=tcp dst-port=22 connection-state=new \
- src-address-list=ssh_stage1 action=add-src-to-address-list address-list=ssh_stage2 address-list-timeout=1m \
- comment=”” disabled=no
- add chain=input protocol=tcp dst-port=22 connection-state=new \
- action=add-src-to-address-list address-list=ssh_stage1 address-list-timeout=1m comment=”” \
- disabled=no
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement