Hello everyone,
i have succesfuly configured the script to ban ssh brute forcers for like 10 days,and the blacklist is being populated.The problem is i dont want them to try to login at all, but at the same time not close the ssh port or change it to other than 22 (which is the simpler solution.)
By doing redirect in firewall to 5122 port for example it works fine but it also leaves 22 open so i have both 22 and 5122 open for ssh.By doing portforward (incoming 5122 which translates inside to 22) it also works fine but still leaves 22 open.
What i want to do is leave only 5122 open which only i would know and that will redirect me internally to 22,does anyone have any ideas?or is it simply needless and i should go with the previous obvious options of changing the port to something else from the IP->services?
thx for any feedback…