On 12/25/05, Zarantu <zarantu@gmail.com> wrote:
Why bother with the firewall, do it the easy way: sudo echo "PORT : IP_ADDY/NETMASK" >>/etc/hosts.deny && rcsshd restart done.
But won't this still cause my box to respond to their request - even to just say DENY? That will still result in bandwidth being used, which I want to prevent. For now I am still running on a different ssh port as this seems to be the best solution. I tried to setup the port-knocking in the firewall, but for some reason it disables all ssh access on that box. Works fine on a test box, but not on the production... Anyway, the different ssh port seems to work out OK for now. -- Andre Truter | Software Engineer | Registered Linux user #185282 ICQ #40935899 | AIM: trusoftzaf | http://www.trusoft.za.org ~ A dinosaur is a salamander designed to Mil Spec ~