[188501] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: how to deal with port scan and brute force attack from AS 8075 ?

daemon@ATHENA.MIT.EDU (Joe Klein)
Thu Mar 31 08:28:18 2016

X-Original-To: nanog@nanog.org
In-Reply-To: <56FCDA9B.7020803@ripe.net>
From: Joe Klein <jsklein@gmail.com>
Date: Thu, 31 Mar 2016 08:27:55 -0400
To: Robert Kisteleki <robert@ripe.net>
Cc: "nanog@nanog.org" <nanog@nanog.org>
Errors-To: nanog-bounces@nanog.org

Use IPv6, bind a second address to the device. Enable on a random port, on
this new address. Remove ssh from the other IP address.

Joe Klein
"Inveniam viam aut faciam"

PGP Fingerprint: 295E 2691 F377 C87D 2841 00C1 4174 FEDF 8ECF 0CC8

On Thu, Mar 31, 2016 at 4:06 AM, Robert Kisteleki <robert@ripe.net> wrote:

>
> > How do you deal with such massive amount of 'illegal' traffic ?
>
> Move SSH to a different port. Better yet, use IPv6 only :-)
>
> Robert
>


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[188501] in North American Network Operators' Group

Re: how to deal with port scan and brute force attack from AS 8075 ?

daemon@ATHENA.MIT.EDU (Joe Klein)Thu Mar 31 08:28:18 2016

daemon@ATHENA.MIT.EDU (Joe Klein)
Thu Mar 31 08:28:18 2016