any
"pass quick proto { tcp, udp } from any to any port ssh keep state (max-src-conn 50, max-src-conn-rate 8/60, overload <bruteforce> flush global)"
Someone correct me if I'm wrong on this. Doesn't the second "any" in the rule above include all ports?
Why not just change the ssh port and drop all attempts to connect to 22.
|