and what do you do, if they spoof your gateway/router/nameservers ip?If you use key-based authentifiction, you shouldn't have to fear brute-force attemps... and as the others wrote, changing the port, may also help a bit.
You have exclusions for hosts you obviously don't want blocked. Key-based auth is not viable for everyone.
-- [email protected] mailing list
