Protect SSH using CSF

Post Reply
waddy
Junior Member
Posts: 2
Joined: 25 Jun 2013, 04:19

Protect SSH using CSF

Post by waddy »

Hi,

Great product. We are experiencing attacks on our ssh port,we have changed the port but still continues.

Can you please explain how and what to enter to allow a subnet into ssh port and deny all others access to ssh port?

Very new to csf.

Thanks.
Sergio
Junior Member
Posts: 1712
Joined: 12 Dec 2006, 14:56

Re: Protect SSH using CSF

Post by Sergio »

First of all,
when you changed the SSH port did you deleted the old one on the iptables? did you added the new one? the attacks continued on the new one?

Sergio
waddy
Junior Member
Posts: 2
Joined: 25 Jun 2013, 04:19

Re: Protect SSH using CSF

Post by waddy »

Yes thats correct Sergio, our server is being hit hard, port scanned, brute force ssh and trying dns recursive exploit. For weeks.

I would like to know how to block all IP's from our ssh port, but allow a subnet or dyndns address that resolves.

Any help?
Sergio
Junior Member
Posts: 1712
Joined: 12 Dec 2006, 14:56

Re: Protect SSH using CSF

Post by Sergio »

Well, what you can do is to delete your SSH port from the TCP IN/OUT in CSF configuration and then add the IP block that you want to use the SSH port to your ALLOWED IPs file, read on the readme.txt how to add IPs to the white list using specific ports.

Sergio
Post Reply