Fail2ban vs Denyhosts vs Iptables

wpspeedster

Well-known member
Joined
May 6, 2016
Messages
114
Best answers
0
Ratings
4
Points
18
#1
The problem is that I am still getting logs that showing IP addresses trying to login and connect to SSH. I need a firewall to stop these. Reading that Fail2ban, Denyhosts and Iptables are best choices for this but not sure which is the best. What are your suggestions and how do people on Forum Web Hosting handle this problem?
 
Joined
Dec 28, 2016
Messages
64
Best answers
0
Ratings
30
Points
0
#2
CSF is the best solution and we can recommend. Simple, lightweight and does its job pretty darn well. It also has integration with all major control panels, if not, you can still set it up it through CLI.
 

LJSHost

Moderator
Staff Member
Joined
Jul 5, 2016
Messages
1,031
Best answers
0
Ratings
202
Points
63
#3
Most of these programs are just a font end for IPtables (this is the firewall)

I would go with CSF https://configserver.com/cp/csf.html easy to setup and provides a simple rules management tool. If you have WHM on your server you could just enable cPHulk with a couple of clicks which is also a decent firewall solution.
 

GswHosting

Well-known member
Joined
Aug 23, 2016
Messages
233
Best answers
0
Ratings
32
Points
0
#4
You can change ssh port from 22 to any you want. What do you have now firewall or iptables ?
Just make sure that you allow ssh connetion trought that port.
 

Malware.Expert

Corporate Member
Corporate Member
Joined
Jun 18, 2018
Messages
30
Best answers
0
Ratings
18 4
Points
8
#6
Use firewall, Change your SSH port something else than port 22. Also use only SSH Login keys and Disable password authentication.
 

mobin

Well-known member
Joined
Jun 22, 2017
Messages
179
Best answers
1
Ratings
60 1
Points
28
#7
I like CSF and Fail2Ban. But that will not help if you install a firewall and leave SSH port open. So you need to change SSH port, restrict SSH access from certain IPs if possible, disable password AUTH is possible, disable direct root and finally configure the firewall to protect brute-force against SSH.
 
Older Threads
Replies
5
Views
1,012
Replies
9
Views
1,517
Replies
5
Views
1,591
Latest Threads
Replies
0
Views
6
Replies
5
Views
25
Replies
0
Views
1
Replies
2
Views
27
Recommended Threads

Latest postsNew threads

Latest Hosting OffersNew Reviews

Sponsors

Latest Blog ArticlesMost Viewed Threads

Top