Re: iptables: identify host with DSL/Fritzbox
On Tue, 20 Jan 2009 12:39:22 +0100, firstname.lastname@example.org said:
> Wouldn't this mean to run a second sshd (with the certificate)?
> The sense of my little defense program is to avoid brute force attacks
> too. How would I do that in that case?
An OpenVPN connection can be separately firewalled on your server. You
could allow SSH access to all connections coming in over the VPN. No need
for a second sshd, and no change to the scanning for other intruders
(except don't block port 1194 UDP, which is OpenVPN's default port,
|Tiger Computing Ltd
|"The Linux Specialists"
|Tel: 033 0088 1511
|Registered in England. Company number: 3389961
|Registered address: Wyastone Business Park,
| Wyastone Leys, Monmouth, NP25 3SR