View Single Post
  #3   (View Single Post)  
Old 18th June 2011
BSDfan666 BSDfan666 is offline
Real Name: N/A, this is the interweb.
Banned
 
Join Date: Apr 2008
Location: Ontario, Canada
Posts: 2,223
Default

The presence of unwanted traffic can be annoying, but it happens to every host on the Internet.. if it's a real nuisance you can try contacting your ISP and they can usually attempt to deal with it, but really it's almost always easier to tough through it.

I agree with rocket357, that is an incredibly stupid way to deal with the problem, I would recommend replacing it.. 3com is odd, indeed OpenBSD is a good replacement for SOHO devices.

As for commenting on your configuration, as long as you're aware of what that ruleset implies.. then it's fine.

As you're exposing ssh to the Internet, you may wish to allow only public key authentication and disable root logins.. be aware that you're likely to see a fair amount of probes in your logs regardless of these settings, that's quite normal.

And for passing in 113/ident, there is rarely a need to.. unless you're connecting to a really strict IRC network you can omit that.
Reply With Quote