Łapanie
/ip firewall filter add action=drop chain=input comment="drop ftp brute forcers" disabled=yes \ dst-port=21 protocol=tcp src-address-list=ftp_blacklist add action=accept chain=output content="530 Login incorrect" dst-limit=\ 1/1m,9,dst-address/1m protocol=tcp add action=add-dst-to-address-list address-list=ftp_blacklist \ address-list-timeout=3h chain=output content="530 Login incorrect" \ disabled=yes protocol=tcp add action=drop chain=input comment="drop ssh brute forcers" dst-port="" \ protocol=tcp src-address-list=ssh_blacklist add action=add-src-to-address-list address-list=ssh_blacklist \ address-list-timeout=12w6d chain=input connection-state=new dst-port=\ 21-23 protocol=tcp src-address-list=ssh_stage3 add action=add-src-to-address-list address-list=ssh_stage3 \ address-list-timeout=10h31m chain=input connection-state=new dst-port=\ 21-23 protocol=tcp src-address-list=ssh_stage2 add action=add-src-to-address-list address-list=ssh_stage2 \ address-list-timeout=9m chain=input connection-state=new dst-port=21-23 \ protocol=tcp src-address-list=ssh_stage1 add action=add-src-to-address-list address-list=ssh_stage1 \ address-list-timeout=3m chain=input connection-state=new dst-port=21-23 \ protocol=tcp
0 komentarzy