Page 1 of 1
How to add IP who try to connect to router to black list?
Posted: Tue Feb 13, 2007 2:24 pm
by Peace
How to add (and block) automaticly IP addresser to black list, who try to connect to the router more then 10 times in a minute?
Evry day some IP's try to connect to my router via ssh more then 10 times in a minute
Posted: Tue Feb 13, 2007 2:30 pm
by sergejs
Probably, the most efficient way is to allow access to the router only for authorized addresses and drop all unauthorized addresses access.
Re: How to add IP who try to connect to router to black list
Posted: Tue Feb 13, 2007 2:31 pm
by balimore
How to add (and block) automaticly IP addresser to black list, who try to connect to the router more then 10 times in a minute?
Evry day some IP's try to connect to my router via ssh more then 10 times in a minute
----
yep,
try to manage ip services for your router
i think, that's simple secure for your system, or make address-list from '/ip fi filter on submenu than drop it.
regards
Hasbullah.com
----
Posted: Tue Feb 13, 2007 2:47 pm
by Peace
balimore
It's not a good reason for us to change service ports
sergejs
I thniks about this, but somethimes need to connect from differents networks
Posted: Tue Feb 13, 2007 2:51 pm
by sergejs
It is possible to specify different networks, that are allowed to connect.
You can add rule, that will limit connection to the router for 2 and address will be added to black-list, if limit is exceeded. Look at demo.mt.lv router for examples.
However first method is more flexible and more recomended.
Posted: Tue Feb 13, 2007 3:41 pm
by Peace
sergejs
In this "Limit" what is BURST and what is RATE?
Posted: Tue Feb 13, 2007 6:22 pm
by Peace
sergejs
Can You please write full example of this rule?