16 Dec
2023
16 Dec
'23
1:11 a.m.
On 12/15/23 18:40, Dmitri Maziuk wrote:
On 12/15/23 18:51, Jim Dory wrote:
I tried firewalld, but locked myself out of the web interface and not real sure how to configure that to work. Could do some more research on it.
(IMO firewalld has no place on a server, I'd replace it with plain iptables, but aside from that --) ITYM fail2ban. The problem with bots is if they're DDoS'ing you and not coming from the same source IP, fail2ban won't be much help either.
Fail2ban can parse logs and react to things at higher-than-packet level, but if it's a new IP every time... :(
Dima
Right now it is the same dozen or so IP addresses. I can look at fail2ban.. have it on my personal desktop but not real familiar with its workings.
Jim