daiceman, I suppose, you can not implement this exactly in described way.
- To get rid of unauthorized access, allow access to the router only for trusted hosts (or for trusted hosts from public networks and for local hosts).
- Modify 'ip service', there are options to set different port for certain services or 'address' option.
I already do this. Thank you.
What I was hoping for was to have a MT box that would have everything open and then create rules when it was attacked so that I could add firewall rules to my core firewall to block ANY traffic from the bad_people into my network. If I have say a firewall rule that only permits ssh into my network from IP's that I allow, that does not stop denied IP's from sending me spam and trying to FTP to my servers.
Guess I will look elsewhere.
Thanks