[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: iptables: identify host with DSL/Fritzbox

On Tue, 20 Jan 2009 12:39:22 +0100, sebastian_rose@gmx.de said:

> Wouldn't this mean to run a second sshd (with the certificate)?


> The sense of my little defense program is to avoid brute force attacks
> too. How would I do that in that case?

No change.

An OpenVPN connection can be separately firewalled on your server. You
could allow SSH access to all connections coming in over the VPN. No need
for a second sshd, and no change to the scanning for other intruders
(except don't block port 1194 UDP, which is OpenVPN's default port,

|Keith Edmunds
|Tiger Computing Ltd
|"The Linux Specialists"
|Tel: 033 0088 1511
|Web: http://www.tiger-computing.co.uk
|Registered in England. Company number: 3389961
|Registered address: Wyastone Business Park,
| Wyastone Leys, Monmouth, NP25 3SR

Reply to: