I'm reading through a SSH hardening guide, and one of their suggestions is that connection rate throttling is needed in order to protect against the DHEat denial-of-service attack.
However, they only give iptables examples. Can anyone convert these to PF for me?
However, they only give iptables examples. Can anyone convert these to PF for me?
Code:
iptables -I INPUT -p tcp --dport 22 -m state --state NEW -m recent --set
iptables -I INPUT -p tcp --dport 22 -m state --state NEW -m recent --update --seconds 10 --hitcount 10 -j DROP
ip6tables -I INPUT -p tcp --dport 22 -m state --state NEW -m recent --set
ip6tables -I INPUT -p tcp --dport 22 -m state --state NEW -m recent --update --seconds 10 --hitcount 10 -j DROP