dale_gribble39 DD-WRT Guru
Joined: 11 Jun 2022 Posts: 1899
|
Posted: Fri Sep 09, 2022 19:05 Post subject: |
|
Looks as if they are trying to guess the timing of attempts before it blocks them. If "limit telnet" is set, this is "normal". If anything, you should have ssh key authentication open on the WAN and nothing else, not even https.
_________________ "The woods are lovely, dark and deep,
But I have promises to keep,
And miles to go before I sleep,
And miles to go before I sleep." - Robert Frost
"I am one of the noticeable ones - notice me" - Dale Frances McKenzie Bozzio
<fact>code knows no gender</fact>
This is me, knowing I've ruffled your feathers, and not giving a ****
Some people are still hard-headed.
--------------------------------------
Mac Pro (Mid 2012) - Two 2.4GHz 6-Core Intel Xeon E5645 processors 64GB 1333MHz DDR3 ECC SDRAM OpenSUSE Leap 15.5 |
|
Alozaros DD-WRT Guru
Joined: 16 Nov 2015 Posts: 6410 Location: UK, London, just across the river..
|
Posted: Sat Sep 10, 2022 7:50 Post subject: |
|
Telnet = Vulnerable !!! especially over WAN...(i disable it totally)
as dale_gribble39 noted, use SSh with key authorisation only...use min RSA SSh-II 2048bit key..i even password protect the key too...
(i used to use 3072bit ssh key protected with complex password)
Limit SSh Access too...
IMPORTANT disable router SSh Password Authorisation... so, no way to authorise via ssh with password only...
finally you can block all belonging range or just this IP (save firewall script )
iptables -I INPUT -s 221.127.24.95 -j DROP
iptables -I FORWARD -s 221.127.24.95 -j DROP
_________________ Atheros
TP-Link WR740Nv1 ---DD-WRT 55179 WAP
TP-Link WR1043NDv2 -DD-WRT 55303 Gateway/DoT,Forced DNS,Ad-Block,Firewall,x4VLAN,VPN
TP-Link WR1043NDv2 -Gargoyle OS 1.15.x AP,DNS,QoS,Quotas
Qualcomm-Atheros
Netgear XR500 --DD-WRT 55460 Gateway/DoH,Forced DNS,AP Isolation,4VLAN,Ad-Block,Firewall,Vanilla
Netgear R7800 --DD-WRT 55460 Gateway/DoT,AD-Block,Forced DNS,AP&Net Isolation,x3VLAN,Firewall,Vanilla
Netgear R9000 --DD-WRT 55363 Gateway/DoT,AD-Block,AP Isolation,Firewall,Forced DNS,x2VLAN,Vanilla
Broadcom
Netgear R7000 --DD-WRT 55460 Gateway/SmartDNS/DoH,AD-Block,Firewall,Forced DNS,x3VLAN,VPN
NOT USING 5Ghz ANYWHERE
------------------------------------------------------
Stubby DNS over TLS I DNSCrypt v2 by mac913 |
|