[NTLUG:Discuss] IP Ranges to block
Rodney Loos
rodneyloos at gmail.com
Mon Jan 26 14:50:57 CST 2009
> Mostly trying to stop
> the sshd failures.....have some other 'features' installed that
> auto-magically add them, but wanted a 'jump start' list. Not looking
> for emailers - but script-kiddies
>
I don't know if it is practical for you depending on where you need SSH
access from, but I took the approach of adding a separate firewall rule
prior to accepting incoming SSH attempts -- I add networks I know I might
connect from (home, work, sprint phone, family members' home ip range etc)
and if the incoming IP is NOT from that range, just DROP it. It takes a
little work keeping up with changing IP assignments, but it has sure helped
preventing all those login-attempts from hackers.
Rodney
More information about the Discuss
mailing list