Re: iptables: identify host with DSL/Fritzbox
Ahh, thanks Keith!
This sound great:
> An OpenVPN connection can be separately firewalled on your server.
Thanks a lot!
I'll read the OpenVPN docs in more deep now ;-)
Sebastian
Keith Edmunds <kae@midnighthax.com> writes:
> On Tue, 20 Jan 2009 12:39:22 +0100, sebastian_rose@gmx.de said:
>
>> Wouldn't this mean to run a second sshd (with the certificate)?
>
> No.
>
>> The sense of my little defense program is to avoid brute force attacks
>> too. How would I do that in that case?
>
> No change.
>
> An OpenVPN connection can be separately firewalled on your server. You
> could allow SSH access to all connections coming in over the VPN. No need
> for a second sshd, and no change to the scanning for other intruders
> (except don't block port 1194 UDP, which is OpenVPN's default port,
> obviously).
>
>
> --
> |Keith Edmunds
> |Tiger Computing Ltd
> |"The Linux Specialists"
> |
> |Tel: 033 0088 1511
> |Web: http://www.tiger-computing.co.uk
> |
> |Registered in England. Company number: 3389961
> |Registered address: Wyastone Business Park,
> | Wyastone Leys, Monmouth, NP25 3SR
--
Sebastian Rose, EMMA STIL - mediendesign, Niemeyerstr.6, 30449 Hannover
Tel.: +49 (0)511 - 36 58 472
Fax: +49 (0)1805 - 233633 - 11044
mobil: +49 (0)173 - 83 93 417
Email: s.rose@emma-stil.de, sebastian_rose@gmx.de
Http: www.emma-stil.de
Reply to: