alanorth/ansible-personal
1
0
Fork 0
Code Issues 4 Pull Requests Projects Releases Wiki Activity

roles/common: Don't log brute force SSH attempts

Browse Source 
This is nice to see that the throttling is working, but the logs are
completely full of this useless crap now.
This commit is contained in:
Alan Orth 2019-02-26 10:30:03 -08:00
parent 329edaee87
commit 18ee583261
Signed by: alanorth
GPG Key ID: 0FB860CC9C45B1B9
1 changed files with 0 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
roles/common/templates/public.xml.j2
View File

@ -7,9 +7,6 @@
<rule family="ipv4"> <rule family="ipv4">
<source address="0.0.0.0/0"/> <source address="0.0.0.0/0"/>
<port protocol="tcp" port="22"/> <port protocol="tcp" port="22"/>
<log prefix="ssh fw limit 5/m " level="warning">
<limit value="5/m"/>
</log>
<accept> <accept>
<limit value="5/m"/> <limit value="5/m"/>
</accept> </accept>
@ -19,9 +16,6 @@
<rule family="ipv6"> <rule family="ipv6">
<source address="::/0"/> <source address="::/0"/>
<port protocol="tcp" port="22"/> <port protocol="tcp" port="22"/>
<log prefix="ssh fw limit 5/m " level="warning">
<limit value="5/m"/>
</log>
<accept> <accept>
<limit value="5/m"/> <limit value="5/m"/>
</accept> </accept>