{"id":1124,"date":"2015-03-19T16:07:49","date_gmt":"2015-03-19T15:07:49","guid":{"rendered":"http:\/\/diablo.craem.net\/?p=1124"},"modified":"2015-03-19T16:07:49","modified_gmt":"2015-03-19T15:07:49","slug":"banear-intentos-login-mikrotik","status":"publish","type":"post","link":"https:\/\/diablo.craem.net\/?p=1124","title":{"rendered":"Banear intentos login mikrotik"},"content":{"rendered":"<p>Esta entrada es otro apunte.<br \/>\nMe gusta dejar administrables los routers que instalo, desde las ip&#8217;s del trabajo o casa, pero a veces, por comodidad y en determinados casos, necesito poder entrar desde cualquier sitio.<br \/>\nEl script que indico a continuaci\u00f3n, al 5\u00ba intento de entrar por winbox o SSH, bloquea la IP por 24 horas.<br \/>\n<code><br \/>\n\/ip firewall filter<br \/>\nadd action=drop chain=input comment=\"BLOQUEA DURANTE 24 horas quien haga 5 intentos seguidos de login SSH!\" dst-port=22 protocol=tcp src-address-list=black_list_ssh<br \/>\nadd action=add-src-to-address-list address-list=black_list_ssh address-list-timeout=1d chain=input connection-state=new dst-port=22 protocol=tcp src-address-list=ssh_stage4<br \/>\nadd action=add-src-to-address-list address-list=ssh_stage4 address-list-timeout=1m chain=input connection-state=new dst-port=22 protocol=tcp src-address-list=ssh_stage3<br \/>\nadd action=add-src-to-address-list address-list=ssh_stage3 address-list-timeout=1m chain=input connection-state=new dst-port=22 protocol=tcp src-address-list=ssh_stage2<br \/>\nadd action=add-src-to-address-list address-list=ssh_stage2 address-list-timeout=1m chain=input connection-state=new dst-port=22 protocol=tcp src-address-list=ssh_stage1<br \/>\nadd action=add-src-to-address-list address-list=ssh_stage1 address-list-timeout=1m chain=input connection-state=new dst-port=22 protocol=tcp<br \/>\nadd action=drop chain=input comment=\"BLOQUEA DURANTE 24 horas quien haga  5 intentos seguidos de login winbox!\" dst-port=8291 protocol=tcp src-address-list=black_list_winbox<br \/>\nadd action=add-src-to-address-list address-list=black_list_winbox address-list-timeout=1d chain=input connection-state=new dst-port=8291 protocol=tcp src-address-list=winbox_stage4<br \/>\nadd action=add-src-to-address-list address-list=winbox_stage4 address-list-timeout=3m chain=input connection-state=new dst-port=8291 protocol=tcp src-address-list=winbox_stage3<br \/>\nadd action=add-src-to-address-list address-list=winbox_stage3 address-list-timeout=3m chain=input connection-state=new dst-port=8291 protocol=tcp src-address-list=winbox_stage2<br \/>\nadd action=add-src-to-address-list address-list=winbox_stage2 address-list-timeout=3m chain=input connection-state=new dst-port=8291 protocol=tcp src-address-list=winbox_stage1<br \/>\nadd action=add-src-to-address-list address-list=winbox_stage1 address-list-timeout=3m chain=input connection-state=new dst-port=8291 protocol=tcp<br \/>\n<\/code><br \/>\nUna vez activado, veremos como la <em>address list<\/em> se nos va llenando de gente Baneada.<br \/>\nenjoy your rules \ud83d\ude09<br \/>\nP.D. Gracias a @gurbtec por el script<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Esta entrada es otro apunte. Me gusta dejar administrables los routers que instalo, desde las ip&#8217;s del trabajo o casa, pero a veces, por comodidad y en determinados casos, necesito poder entrar desde cualquier sitio. El script que indico a continuaci\u00f3n, al 5\u00ba intento de entrar por winbox o SSH, bloquea la IP por 24 [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[33,36,77,107],"class_list":["post-1124","post","type-post","status-publish","format-standard","hentry","category-mikrotik","tag-banear","tag-blacklist","tag-firewall","tag-mikrotik"],"_links":{"self":[{"href":"https:\/\/diablo.craem.net\/index.php?rest_route=\/wp\/v2\/posts\/1124","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/diablo.craem.net\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/diablo.craem.net\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/diablo.craem.net\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/diablo.craem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1124"}],"version-history":[{"count":0,"href":"https:\/\/diablo.craem.net\/index.php?rest_route=\/wp\/v2\/posts\/1124\/revisions"}],"wp:attachment":[{"href":"https:\/\/diablo.craem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1124"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/diablo.craem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1124"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/diablo.craem.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1124"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}