[geeks] ssh attacks
Mike Hebel
nimitz at nimitzbrood.com
Wed Aug 11 16:29:16 CDT 2004
>> > Didn't you want this?
>> >
>> > block in quick on le0 proto tcp from any to $firewall_IP port = 22
>>
>>
>> No because I want to be able to get to ssh on the firewall inside the
>> network. Otherwise the firewall would be serial console only and I
> don't
>> have a terminal server set up yet. Setting that would mean I'd have
> to
>> drag a terminal under the stairs where the DSL comes in and plug it
> into
>> the firewall to change anything since the box is headless. (0)
>
> Hence only blocking it on le0
D'OH!
Yes, that should work. I'll fiddle with it when I get home.
Mike Hebel
----
"I think we used too much!" - Chris Knight
More information about the geeks
mailing list