Dear forum,
I have attacks to my RB493. Someone is trying to access my router from pptp server. Is using a botnet to access from a lot of different IPs. Which is the best action to protect my router?
Thanks,
omg! do you really need to give access to your pptp server to all over the world? wo_Ot
Haha, no, but here in Spain everybody have a lot of different dynamic IP ranges and some of this attacks comes from the same ISP we have. I can limit the access to some ranges, but this won’t solve the problem 100%.
maybe implement port knocking, and those who undergo the procedure can simple connect to router using pptp tunnel
Sure, i’ll make port knocking when I have time. I read it in the wiki.
Thanks!
so why not limit access to only your clients? if you clients will do this things, then you may affect them directly - they’re already your clients =)
yesterday I have ip like 88.8.x.x and 4 attacks come from 88.8.x.x. I registered about 40 different IPs.. xD
I lookup the ips in dnsstuff.com and there are IPs from spain, singapur, china, chile, france..
for whom your pptp server is?..
my costumer is 500 km from here and I use this to enter from remote and make configuration changes or hotspot updates.
isn’t WinBox enough? =)
Sometimes yes, but there is some costumers that we have to enter more APs or machines in the LAN and with the PPTP we can enter all places.