My server is getting hit pretty hard by (what appears to be) script kiddies in China. I'm just looking for some thoughts/ideas on how to potentially setup some type of Fail2ban proc?
Asked
Active
Viewed 1,557 times
-1
-
See: http://serverfault.com/questions/43360/cygwin-sshd-autoblock-failed-logins/43900#43900 – tegbains Jan 20 '10 at 06:23
2 Answers
0
An answer to a similar question links to a tool to protect Cygwin's sshd in Windows.
As fail2ban works for all sorts of programs that write (login) log files, this won't necessarily be adequate solution. As you didn't specify what service are you securing, I assume that it is ssh...
-
1I've updated sshd_block for Windows Vista / 2008 / 7 / 2008 R2 support. – Evan Anderson Jan 20 '10 at 20:39
0
IPSec should fill your needs and it's free/included in Windows. Nothing fancy here, just a simple deny rule and a filter matching the offending IP Address spaces...
Dscoduc
- 1,095
- 2
- 8
- 15