alanorth/ansible-personal
1
0
Fork 0
Code Issues 4 Pull Requests Projects Releases Wiki Activity

roles/common: Rate limit SSH connections in firewalld

Browse Source 
I think 5 connections per minute is more than enough. Any over this
and it will be logged to the systemd journal as a warning.

See: https://www.win.tue.nl/~vincenth/ssh_rate_limit_firewalld.htm
See: https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/security_guide/configuring_complex_firewall_rules_with_the_rich-language_syntax
This commit is contained in:
Alan Orth 2019-01-28 14:09:18 +02:00
parent bc88e05aa5
commit 329edaee87
Signed by: alanorth
GPG Key ID: 0FB860CC9C45B1B9
1 changed files with 12 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
roles/common/templates/public.xml.j2
View File

@ -7,14 +7,24 @@
<rule family="ipv4"> <rule family="ipv4">
<source address="0.0.0.0/0"/> <source address="0.0.0.0/0"/>
<port protocol="tcp" port="22"/> <port protocol="tcp" port="22"/>
<accept/> <log prefix="ssh fw limit 5/m " level="warning">
<limit value="5/m"/>
</log>
<accept>
<limit value="5/m"/>
</accept>
</rule> </rule>
{# ipv6 ssh rules #} {# ipv6 ssh rules #}
<rule family="ipv6"> <rule family="ipv6">
<source address="::/0"/> <source address="::/0"/>
<port protocol="tcp" port="22"/> <port protocol="tcp" port="22"/>
<accept/> <log prefix="ssh fw limit 5/m " level="warning">
<limit value="5/m"/>
</log>
<accept>
<limit value="5/m"/>
</accept>
</rule> </rule>
{# web rules #} {# web rules #}