Scott: You wouldn't happen to have a working fail2ban config for blocking SIP from specific ip that you'd be willing to share?
I never quite got fail2ban working, and just iptables the offending ip. I don't think I'm losing anything significant this way, but it's not a clean solution. Janina Scott Granados writes: > It also quiets the logs quite a bit. I always used fail2ban when using IPv4 > but I just turned off IPV4 listening on SSHD on my servers and it’s so much > cleaner. So far I’m really starting to enjoy IPv6 even though I’m not sure > how to do the masks yet. > > > > On May 5, 2017, at 10:17 AM, 'Janina Sajka' via MacVisionaries > > <macvisionaries@googlegroups.com> wrote: > > > > Congrats, Simon! Big job, huh? <smile> > > > > Yes, the Apple IPv6 implementation is quite good, and should really be > > uneventful when deployed. I wouldn't turn off 4 for now, though, except > > in specific circumstances such as ssh server. Turning off 4 for incoming > > ssh will frustrate the script kiddies and that's certainly a good thing. > > > > Janina > > > > > > > > Simon Fogarty writes: > >> Hi Janina > >> > >> So I thought I'd have a play with IP v6 and oh how difficult that was. > >> > >> So enable it on my fritz box and then made sure my servers had IP v6 > >> switched on and DHCP and DNS set to obtain addresses automatically > >> And so far no issues. > >> > >> If only my service provider did IP v 6 I'd switch ip v4 off, apart from > >> my work place I don't really need it > >> > >> And nothing appears to be different so bring it on. > >> > >> -----Original Message----- > >> From: 'Janina Sajka' via MacVisionaries > >> [mailto:macvisionaries@googlegroups.com] > >> Sent: Saturday, 29 April 2017 2:13 AM > >> To: macvisionaries@googlegroups.com > >> Subject: Re: How to prefer IPv6 on the Mac OS X Sierra? > >> > >> Is IPv6 worth the bother? Well, that depends on what you do, of course. > >> > >> If all you do is browse the web and pick up email somewhere, the answer is > >> probably no. > >> > >> If your home systems do voip or host any services, including just > >> listening for ssh, there's a solid benefit. And, this benefit is magnified > >> if more than one of your home LAN machines are hosting. My personal > >> example is my work desk where there's a SIP handset that looks to all the > >> world like an ordinary business phone, but is actually a computer > >> connected by cat ethernet cable to my router. I also use a soft SIP client > >> on my main desktop, so I have two phones right there that need to make, > >> and more importantly recieve calls. The recieving is the benefit. On IPv4 > >> you're writing NAT rules. With 6 you forget all about NAT. > >> > >> Another example ... When I turned off ssh over 4, my hack attempts dropped > >> to zero, literally. Nowadays I only turn on ssh over 4 on my server, and > >> then only when traveling because I can't be sure of IPv6 access where I > >> travel. > >> > >> Another example ... If you want to access files on your home LAN from your > >> mobile while you're out and about, you're going to find it far simpler and > >> far more secure to do that over 6, and not at all over 4. > >> > >> So, it depends. > >> > >> hth > >> > >> Janina > >> > >> Simon Fogarty writes: > >>> But is it worth while using IP v6 within your own home for instance is it > >>> going to be any benefit to a user? > >>> > >>> I know in NZ IP v4 is still in major use but we're a population of 4.5 > >>> million, > >>> > >>> I have thought I might change the home network to IP V6 just to have a > >>> play but need to ensure that RDP and other related services stay active > >>> on my servers so I don't go losing acess and connectivity. > >>> > >>> -----Original Message----- > >>> From: macvisionaries@googlegroups.com > >>> [mailto:macvisionaries@googlegroups.com] On Behalf Of Daniel Chavez > >>> Sent: Thursday, 27 April 2017 11:20 PM > >>> To: macvisionaries@googlegroups.com > >>> Subject: Re: How to prefer IPv6 on the Mac OS X Sierra? > >>> > >>> Good day, > >>> As I'm a System Admin, I, too, prefer IPV6. > >>> However, IPV6 depends on the ISP and the IP pool being pulled from. > >>> Most ISP's still use IPV4 for backwards compatibility for older devices, > >>> though most modem'/router combo's employe both IPV4 and IPV6 support, but > >>> this IPV6 support usually is disabled until the ISP fully supports it. > >>> So it's possible that what you may have done is correct, but it's an ISP > >>> problem. > >>> > >>> -- > >>> The following information is important for all members of the Mac > >>> Visionaries list. > >>> > >>> If you have any questions or concerns about the running of this list, or > >>> if you feel that a member's post is inappropriate, please contact the > >>> owners or moderators directly rather than posting on the list itself. > >>> > >>> Your Mac Visionaries list moderator is Mark Taylor. You can reach > >>> mark at: macvisionaries+modera...@googlegroups.com and your owner is > >>> Cara Quinn - you can reach Cara at caraqu...@caraquinn.com > >>> > >>> The archives for this list can be searched at: > >>> http://www.mail-archive.com/macvisionaries@googlegroups.com/ > >>> --- > >>> You received this message because you are subscribed to the Google Groups > >>> "MacVisionaries" group. > >>> To unsubscribe from this group and stop receiving emails from it, send an > >>> email to macvisionaries+unsubscr...@googlegroups.com. > >>> To post to this group, send email to macvisionaries@googlegroups.com. > >>> Visit this group at https://groups.google.com/group/macvisionaries. > >>> For more options, visit https://groups.google.com/d/optout. > >>> > >>> -- > >>> The following information is important for all members of the Mac > >>> Visionaries list. > >>> > >>> If you have any questions or concerns about the running of this list, or > >>> if you feel that a member's post is inappropriate, please contact the > >>> owners or moderators directly rather than posting on the list itself. > >>> > >>> Your Mac Visionaries list moderator is Mark Taylor. You can reach > >>> mark at: macvisionaries+modera...@googlegroups.com and your owner is > >>> Cara Quinn - you can reach Cara at caraqu...@caraquinn.com > >>> > >>> The archives for this list can be searched at: > >>> http://www.mail-archive.com/macvisionaries@googlegroups.com/ > >>> --- > >>> You received this message because you are subscribed to the Google Groups > >>> "MacVisionaries" group. > >>> To unsubscribe from this group and stop receiving emails from it, send an > >>> email to macvisionaries+unsubscr...@googlegroups.com. > >>> To post to this group, send email to macvisionaries@googlegroups.com. > >>> Visit this group at https://groups.google.com/group/macvisionaries. > >>> For more options, visit https://groups.google.com/d/optout. > >> > >> -- > >> > >> Janina Sajka, Phone: +1.443.300.2200 > >> sip:jan...@asterisk.rednote.net > >> Email: jan...@rednote.net > >> > >> Linux Foundation Fellow > >> Executive Chair, Accessibility Workgroup: http://a11y.org > >> > >> The World Wide Web Consortium (W3C), Web Accessibility Initiative (WAI) > >> Chair, Accessible Platform Architectures http://www.w3.org/wai/apa > >> > >> -- > >> The following information is important for all members of the Mac > >> Visionaries list. > >> > >> If you have any questions or concerns about the running of this list, or > >> if you feel that a member's post is inappropriate, please contact the > >> owners or moderators directly rather than posting on the list itself. > >> > >> Your Mac Visionaries list moderator is Mark Taylor. You can reach mark > >> at: macvisionaries+modera...@googlegroups.com and your owner is Cara > >> Quinn - you can reach Cara at caraqu...@caraquinn.com > >> > >> The archives for this list can be searched at: > >> http://www.mail-archive.com/macvisionaries@googlegroups.com/ > >> --- > >> You received this message because you are subscribed to the Google Groups > >> "MacVisionaries" group. > >> To unsubscribe from this group and stop receiving emails from it, send an > >> email to macvisionaries+unsubscr...@googlegroups.com. > >> To post to this group, send email to macvisionaries@googlegroups.com. > >> Visit this group at https://groups.google.com/group/macvisionaries. > >> For more options, visit https://groups.google.com/d/optout. > >> > >> -- > >> The following information is important for all members of the Mac > >> Visionaries list. > >> > >> If you have any questions or concerns about the running of this list, or > >> if you feel that a member's post is inappropriate, please contact the > >> owners or moderators directly rather than posting on the list itself. > >> > >> Your Mac Visionaries list moderator is Mark Taylor. You can reach mark > >> at: macvisionaries+modera...@googlegroups.com and your owner is Cara > >> Quinn - you can reach Cara at caraqu...@caraquinn.com > >> > >> The archives for this list can be searched at: > >> http://www.mail-archive.com/macvisionaries@googlegroups.com/ > >> --- > >> You received this message because you are subscribed to the Google Groups > >> "MacVisionaries" group. > >> To unsubscribe from this group and stop receiving emails from it, send an > >> email to macvisionaries+unsubscr...@googlegroups.com. > >> To post to this group, send email to macvisionaries@googlegroups.com. > >> Visit this group at https://groups.google.com/group/macvisionaries. > >> For more options, visit https://groups.google.com/d/optout. > > > > -- > > > > Janina Sajka, Phone: +1.443.300.2200 > > sip:jan...@asterisk.rednote.net > > Email: jan...@rednote.net > > > > Linux Foundation Fellow > > Executive Chair, Accessibility Workgroup: http://a11y.org > > > > The World Wide Web Consortium (W3C), Web Accessibility Initiative (WAI) > > Chair, Accessible Platform Architectures http://www.w3.org/wai/apa > > > > -- > > The following information is important for all members of the Mac > > Visionaries list. > > > > If you have any questions or concerns about the running of this list, or if > > you feel that a member's post is inappropriate, please contact the owners > > or moderators directly rather than posting on the list itself. > > > > Your Mac Visionaries list moderator is Mark Taylor. You can reach mark at: > > macvisionaries+modera...@googlegroups.com and your owner is Cara Quinn - > > you can reach Cara at caraqu...@caraquinn.com > > > > The archives for this list can be searched at: > > http://www.mail-archive.com/macvisionaries@googlegroups.com/ > > --- > > You received this message because you are subscribed to the Google Groups > > "MacVisionaries" group. > > To unsubscribe from this group and stop receiving emails from it, send an > > email to macvisionaries+unsubscr...@googlegroups.com. > > To post to this group, send email to macvisionaries@googlegroups.com. > > Visit this group at https://groups.google.com/group/macvisionaries. > > For more options, visit https://groups.google.com/d/optout. > > -- > The following information is important for all members of the Mac Visionaries > list. > > If you have any questions or concerns about the running of this list, or if > you feel that a member's post is inappropriate, please contact the owners or > moderators directly rather than posting on the list itself. > > Your Mac Visionaries list moderator is Mark Taylor. You can reach mark at: > macvisionaries+modera...@googlegroups.com and your owner is Cara Quinn - you > can reach Cara at caraqu...@caraquinn.com > > The archives for this list can be searched at: > http://www.mail-archive.com/macvisionaries@googlegroups.com/ > --- > You received this message because you are subscribed to the Google Groups > "MacVisionaries" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to macvisionaries+unsubscr...@googlegroups.com. > To post to this group, send email to macvisionaries@googlegroups.com. > Visit this group at https://groups.google.com/group/macvisionaries. > For more options, visit https://groups.google.com/d/optout. -- Janina Sajka, Phone: +1.443.300.2200 sip:jan...@asterisk.rednote.net Email: jan...@rednote.net Linux Foundation Fellow Executive Chair, Accessibility Workgroup: http://a11y.org The World Wide Web Consortium (W3C), Web Accessibility Initiative (WAI) Chair, Accessible Platform Architectures http://www.w3.org/wai/apa -- The following information is important for all members of the Mac Visionaries list. If you have any questions or concerns about the running of this list, or if you feel that a member's post is inappropriate, please contact the owners or moderators directly rather than posting on the list itself. Your Mac Visionaries list moderator is Mark Taylor. You can reach mark at: macvisionaries+modera...@googlegroups.com and your owner is Cara Quinn - you can reach Cara at caraqu...@caraquinn.com The archives for this list can be searched at: http://www.mail-archive.com/macvisionaries@googlegroups.com/ --- You received this message because you are subscribed to the Google Groups "MacVisionaries" group. To unsubscribe from this group and stop receiving emails from it, send an email to macvisionaries+unsubscr...@googlegroups.com. To post to this group, send email to macvisionaries@googlegroups.com. Visit this group at https://groups.google.com/group/macvisionaries. For more options, visit https://groups.google.com/d/optout.
