I’m watching my RouterOS4.1 log, As I watch one IP trying to get in via ssh with different usernames. I’ve done tracert and know the domain in Hungary.
Anyway to “blacklist”. Whats the likelihood it’s actually coming from there?
Anyway to *^%CK with them?
Thanks
especially http://wiki.mikrotik.com/wiki/Bruteforce_login_prevention_(FTP_%26_SSH)
or simply block ssh from outside if you don’t need it
Thanks,
Already using a few good filter scripts. I like the 2 you just recommended, blocking the user for excessive failed attempts ftp or ssh.
