Hello, I cannot stop these types of attacks, I try for content, layer7 and I cannot block the addresses. At the moment I am doing it manually, but there are many and they do not stop. I have a Script that changes port according to the time, but it doesn’t help either, sooner or later they discover the port. I have a filter of port scanners. Any ideas to apply?
It seems you only need the port open for yourself or a small number of users (because you mention changing the port number regularly). In that case you could use “port knocking” to hide the open port from scanners. Make sure to use an individual sequence of ports, not the ones in the tutorial.
Why are any of your ports open??