OpenVZ Forum: Support » iptables on VE0 to prevent SSH Attacks?

Home » General » Support » iptables on VE0 to prevent SSH Attacks? (

) 1 Vote

Show: Today's Messages :: Show Polls :: Message Navigator
E-mail to friend

iptables on VE0 to prevent SSH Attacks? [message #1118]

Wed, 01 February 2006 15:18

phpfreak
Messages: 47
Registered: January 2006

Member

Had an interesting scenario this morning. We had a brute force scan network wide and it was hitting all of the VE's on a single server. When this happened, we had about 250 sshd processes running and visible in TOP on the host machine. Of course this spiked the load considerably.

I tried to drop the offending host's IP address on venet0 on the host machine (VE0) but it had no effect.

Is there any simple way to have a firewall rule on the host machine that can affect all of the VE's in a case like this?

Please let us know.

Thanks,

Eric Rosebrock
http://www.serverpowered.com
http://www.hybodus.com
http://www.linuxforum.com
http://www.phpfreaks.com

Report message to a moderator

[Message index]

		iptables on VE0 to prevent SSH Attacks? By: phpfreak on Wed, 01 February 2006 15:18
		Re: iptables on VE0 to prevent SSH Attacks? By: phpfreak on Wed, 01 February 2006 15:40
		Re: iptables on VE0 to prevent SSH Attacks? By: kir on Wed, 01 February 2006 15:56
		Re: iptables on VE0 to prevent SSH Attacks? By: phpfreak on Wed, 01 February 2006 15:58
		Re: iptables on VE0 to prevent SSH Attacks? By: almahdi on Fri, 17 February 2006 18:07
		Re: iptables on VE0 to prevent SSH Attacks? By: kir on Fri, 17 February 2006 18:35

Previous Topic:	application templates?
Next Topic:	Config files

Goto Forum:

-=] Back to Top [=-

[ Syndicate this forum (XML) ] [

] [

]

Current Time: Sat Oct 25 19:13:27 GMT 2025

Total time taken to generate the page: 0.08527 seconds