[geeks] ssh attacks
nimitz at nimitzbrood.com
Wed Aug 11 16:29:16 CDT 2004
>> > Didn't you want this?
>> > block in quick on le0 proto tcp from any to $firewall_IP port = 22
>> No because I want to be able to get to ssh on the firewall inside the
>> network. Otherwise the firewall would be serial console only and I
>> have a terminal server set up yet. Setting that would mean I'd have
>> drag a terminal under the stairs where the DSL comes in and plug it
>> the firewall to change anything since the box is headless. (0)
> Hence only blocking it on le0
Yes, that should work. I'll fiddle with it when I get home.
"I think we used too much!" - Chris Knight
More information about the geeks