VyOS command definitions, scripts, and utilities (mirror of https://github.com/vyos-contrib/veeos-1x.git) https://git.amelek.net/vyos-contrib/veeos-1x.git/atom?h=equuleus 2023-07-19T14:39:45+00:00 2023-07-19T14:39:45+00:00 Viacheslav Hletenko v.gletenko@vyos.io 2023-07-19T14:39:45+00:00 urn:sha1:cd6f7994a9c5d6501ce56b57362c7f33f64fa3d5 Sshguard protects hosts from brute-force attacks It can inspect logs and block "bad" addresses by threshold Auto-generates own tables and rules for nftables, so they are not intercept with VyOS firewall rules. When service stops, all generated tables are deleted. set service ssh dynamic-protection set service ssh dynamic-protection allow-from '192.0.2.1' set service ssh dynamic-protection block-time '120' set service ssh dynamic-protection detect-time '1800' set service ssh dynamic-protection threshold '30'