cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
2099
Views
0
Helpful
5
Replies

SSH Brute Force Mitigation

mlitka
Level 2
Level 2

How can I mitigate a brute force attack on my SSH server running IOS 12.4? Is there an ip inspect statement that can be added to disable connection attempts from an IP who has multiple failed login attempts?

5 Replies 5

Danilo Dy
VIP Alumni
VIP Alumni

Hi,

The only solution is put an ACL for SSH/VTY access. Do not open SSH/VTY access to any.

Regards,

Dandy

I actually found a solution elsewhere on the forum for this.

Thanks to Rick Burts!

http://www.cisco.com/en/US/products/ps6350/products_configuration_guide_chapter09186a0080455b93.html#wp1027195

Michael

I am glad that you found that thread. I think that the login enhancements will do what you are looking for. Thanks for mentioning me in conjunction with this solution.

HTH

Rick

HTH

Rick

Rick -

No problem. Appreciate your participation here. I have been reading Terry Slattery's blog and he gave you a mention on Sunday. Are you blogging anywhere?

Thanks again,

Mike

Mike

Thanks for reading and noticing Terry's blog. I have really enjoyed my association with him.

No I am not currently blogging anywhere.

HTH

Rick

HTH

Rick
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: