Hacker News new | ask | show | jobs
by ycombinatorrio 820 days ago
I run endlessh on the port 2222 and I configured fail2ban to redirect the source ip addresses who did X failed attempts from the dest port 22 to the dest port 2222 transparently. I use the table NAT and prerouting to achieve that, you can use ipset to match the source ip addresses.
2 comments
pdimitar 820 days ago
Oh nice, do you have a blog post detailing it step by step?
link
withinboredom 820 days ago
I do something similar except send them bytes from /dev/random, providing free protocol fuzzing.
link