[j-nsp] SSH attack
Jared Mauch
jared at puck.nether.net
Wed Feb 20 18:18:08 EST 2008
On Wed, Feb 20, 2008 at 04:15:04PM -0400, Ying Zhang wrote:
> Hello, all,
>
> On our Juniper router, we constantly see people trying to connect through SSH. I've tried everything I can find to eliminate it. The following is what I've done so far. Just wondering if there is a better way to stop it on the router (we do block port ssh on every link). Thanks in advance.
if you apply a firewall filter to lo0 that blocks tcp/22 from anywhere
but trusted ip ranges that will do what you want. That will block on all
interfaces.
- Jared
--
Jared Mauch | pgp key available via finger from jared at puck.nether.net
clue++; | http://puck.nether.net/~jared/ My statements are only mine.
More information about the juniper-nsp
mailing list