Hello, I've read this forum http://www.howtoforge.com/preventing_ssh_dictionary_attacks_with_denyhosts#comment-1346 and I've not seen how to add the iptables rules to use with the ISPConfig Bastille-firewall ? How to add these rules permanently and properly ?
I want to add some iptables rules like this : iptables -A SSH_CHECK -m recent --update --seconds 60 --hitcount 4 --name SSH But the ISPConfig web interface seems not to allow this kind of rules. Perhaps is there a file in which I can put these rules ?
It's /etc/Bastille/bastille-firewall.cfg. But this file gets overwritten everytime you make changes in ISPConfig, so you better make your changes also in the template in /root/ispconfig/isp/conf.
