[Commotion-admin] [commotion-router] Rate limit ssh attempts to WAN zone (#120)
areynold
notifications at github.com
Wed Apr 30 14:26:15 EDT 2014
> @@ -61,6 +60,17 @@ config forwarding
> config rule
> option src 'wan'
> option dest_port '22'
> + option proto 'tcp'
> + option state 'NEW'
> + option limit '3/min'
> + option limit_burst '2'
> + option target 'LOG'
> +
> +config rule
> + option src 'wan'
> + option dest_port '22'
> + option state 'RELATED'
> + option state 'ESTABLISHED'
It's intentional. I wasn't totally sure whether I could put two state options in a single config rule, but it seems to work. I could break it out if you want.
---
Reply to this email directly or view it on GitHub:
https://github.com/opentechinstitute/commotion-router/pull/120/files#r12158138
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.chambana.net/pipermail/commotion-admin/attachments/20140430/56fc0463/attachment.html>
More information about the Commotion-admin
mailing list