From: "André Rodier"
> chain input {
>
> # Limit new imap connections ala fail2ban
> meta nfproto ipv4 tcp dport imaps ct state new,untracked \
> limit rate over 10/minute add @banned_imap_ipv4 { ip saddr }
I'm don't know all the subttlties of this rule, but there are
Hi,
I have used fail2ban for a while, to block brute force attacks on ssh, imap(s)
or submission(s) ports.
More because I wanted to reduce the noise in the logs rather than a fear of a
broken password.
Then, with nftables, I realised you can achieve the same thing, as long as a
TCP connection i
