On Thu, Dec 21, 2023 at 10:51 AM Alain D D Williams <a...@phcomp.co.uk> wrote: > > On Thu, Dec 21, 2023 at 10:31:06AM -0500, Pocket wrote: > [...] > > Amazon AWS system. should not be able to hit your http server, unless you > > want it to. > > How do I distinguish between wanted & unwanted connections. The only thing > that > I can think of is to DROP incoming packets if the source port is 80 or 443 - > which would disrupt the mapping process. > > However: if the mapping process uses normal TCP (ie high/random port number) > this would do little.
You may be able to use <https://docs.aws.amazon.com/vpc/latest/userguide/aws-ip-ranges.html> to generate a blacklist. On machines under my purview, I find Amazon is fairly well behaved. Microsoft/Sharepoint/Teams, Digital Ocean, China, and other European country netblocks are much more misbehaving. Jeff