Jump to content
  • 0
Mamay

ip https lockout-policy 4 60 1

Question

Giga 2 - 2.11.A.4.0-2

ip https lockout-policy 4 60 1 - насколько я понимаю некорректно и работает лишь вариант без security ip http lockout-policy 4 60 1?

Есть ли шансы на появление lockout на https?

Share this post


Link to post
Share on other sites

24 answers to this question

Recommended Posts

  • 0
1 час назад, Mamay сказал:

Giga 2 - 2.11.A.4.0-2

ip https lockout-policy 4 60 1 - насколько я понимаю некорректно и работает лишь вариант без security ip http lockout-policy 4 60 1?

Есть ли шансы на появление lockout на https?

А что, уже лезут по https? :)

На самом деле там механизм авторизации все равно един, потому нет необходимости задавать lockout-policy на https - оно уже работает.

Share this post


Link to post
Share on other sites
  • 0
10 минут назад, Le ecureuil сказал:

А что, уже лезут по https? :)

Да. Только что почистил свои логи. С 8-45 до 8-47 бот упорно пытался подобрать пароль для пользователей: user, cicso, admin, test. Собственно с чего я и задал сей вопрос, ибо ip http security-level private!

Share this post


Link to post
Share on other sites
  • 0
5 минут назад, Mamay сказал:

Да. Только что почистил свои логи. С 8-45 до 8-47 бот упорно пытался подобрать пароль для пользователей: user, cicso, admin, test. Собственно с чего я и задал сей вопрос, ибо ip http security-level private!

Что-то здесь не так.

Какие-нибудь порты снаружи открыты явно?

Share this post


Link to post
Share on other sites
  • 0
1 час назад, Le ecureuil сказал:

Что-то здесь не так.

Какие-нибудь порты снаружи открыты явно?

Токма 443. Сам в шоке. 

Share this post


Link to post
Share on other sites
  • 0
2 часа назад, Le ecureuil сказал:

А что, уже лезут по https? :)

очень часто сканируют через "RouterScan" по логам с роутера видно одинаковый подбор логинов (admin, root и т.д) (хорошо что эксплойты не нашли под нашу прошивку)

Edited by Marceline

Share this post


Link to post
Share on other sites
  • 0
Скрытый текст
Oct 25 00:09:32ndm
Core::Authenticator: generating.
Oct 25 00:09:32ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:09:33ndm
Core::Authenticator: generating.
Oct 25 00:09:33ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:09:35ndm
Core::Authenticator: generating.
Oct 25 00:09:35ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:09:36ndm
Core::Authenticator: generating.
Oct 25 00:09:36ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:09:37ndm
Core::Authenticator: generating.
Oct 25 00:09:37ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:09:39ndm
Core::Authenticator: generating.
Oct 25 00:09:39ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:09:40ndm
Core::Authenticator: generating.
Oct 25 00:09:40ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:09:41ndm
Core::Authenticator: generating.
Oct 25 00:09:41ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:09:43ndm
Core::Authenticator: generating.
Oct 25 00:09:43ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:09:44ndm
Core::Authenticator: generating.
Oct 25 00:09:44ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:09:45ndm
Core::Authenticator: generating.
Oct 25 00:09:45ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:09:47ndm
Core::Authenticator: generating.
Oct 25 00:09:47ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:09:48ndm
Core::Authenticator: generating.
Oct 25 00:09:48ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:09:49ndm
Core::Authenticator: generating.
Oct 25 00:09:49ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:09:51ndm
Core::Authenticator: generating.
Oct 25 00:09:51ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:09:52ndm
Core::Authenticator: generating.
Oct 25 00:09:52ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:09:53ndm
Core::Authenticator: generating.
Oct 25 00:09:53ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:09:55ndm
Core::Authenticator: generating.
Oct 25 00:09:55ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:09:56ndm
Core::Authenticator: generating.
Oct 25 00:09:56ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:09:57ndm
Core::Authenticator: generating.
Oct 25 00:09:57ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:09:59ndm
Core::Authenticator: generating.
Oct 25 00:09:59ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:00ndm
Core::Authenticator: generating.
Oct 25 00:10:00ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:01ndm
Core::Authenticator: generating.
Oct 25 00:10:01ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:03ndm
Core::Authenticator: generating.
Oct 25 00:10:03ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:04ndm
Core::Authenticator: generating.
Oct 25 00:10:04ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:05ndm
Core::Authenticator: generating.
Oct 25 00:10:05ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:07ndm
Core::Authenticator: generating.
Oct 25 00:10:07ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:08ndm
Core::Authenticator: generating.
Oct 25 00:10:08ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:09ndm
Core::Authenticator: generating.
Oct 25 00:10:09ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:11ndm
Core::Authenticator: generating.
Oct 25 00:10:11ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:12ndm
Core::Authenticator: generating.
Oct 25 00:10:12ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:13ndm
Core::Authenticator: generating.
Oct 25 00:10:13ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:15ndm
Core::Authenticator: generating.
Oct 25 00:10:15ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:16ndm
Core::Authenticator: generating.
Oct 25 00:10:16ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:17ndm
Core::Authenticator: generating.
Oct 25 00:10:17ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:19ndm
Core::Authenticator: generating.
Oct 25 00:10:19ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:20ndm
Core::Authenticator: generating.
Oct 25 00:10:20ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:22ndm
Core::Authenticator: generating.
Oct 25 00:10:22ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:23ndm
Core::Authenticator: generating.
Oct 25 00:10:23ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:24ndm
Core::Authenticator: generating.
Oct 25 00:10:24ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:26ndm
Core::Authenticator: generating.
Oct 25 00:10:26ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:27ndm
Core::Authenticator: generating.
Oct 25 00:10:27ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:28ndm
Core::Authenticator: generating.
Oct 25 00:10:28ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:30ndm
Core::Authenticator: generating.
Oct 25 00:10:30ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:31ndm
Core::Authenticator: generating.
Oct 25 00:10:31ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:32ndm
Core::Authenticator: generating.
Oct 25 00:10:32ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:34ndm
Core::Authenticator: generating.
Oct 25 00:10:34ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:35ndm
Core::Authenticator: generating.
Oct 25 00:10:35ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:36ndm
Core::Authenticator: generating.
Oct 25 00:10:36ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:38ndm
Core::Authenticator: generating.
Oct 25 00:10:38ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:39ndm
Core::Authenticator: generating.
Oct 25 00:10:39ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:40ndm
Core::Authenticator: generating.
Oct 25 00:10:40ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:42ndm
Core::Authenticator: generating.
Oct 25 00:10:42ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:43ndm
Core::Authenticator: generating.
Oct 25 00:10:43ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:44ndm
Core::Authenticator: generating.
Oct 25 00:10:44ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:46ndm
Core::Authenticator: generating.
Oct 25 00:10:46ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:47ndm
Core::Authenticator: generating.
Oct 25 00:10:47ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:48ndm
Core::Authenticator: generating.
Oct 25 00:10:48ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:50ndm
Core::Authenticator: generating.
Oct 25 00:10:50ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:51ndm
Core::Authenticator: generating.
Oct 25 00:10:51ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:52ndm
Core::Authenticator: generating.
Oct 25 00:10:52ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:54ndm
Core::Authenticator: generating.
Oct 25 00:10:54ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:55ndm
Core::Authenticator: generating.
Oct 25 00:10:55ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:56ndm
Core::Authenticator: generating.
Oct 25 00:10:56ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:58ndm
Core::Authenticator: generating.
Oct 25 00:10:58ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:10:59ndm
Core::Authenticator: generating.
Oct 25 00:10:59ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:11:00ndm
Core::Authenticator: generating.
Oct 25 00:11:00ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:11:02ndm
Core::Authenticator: generating.
Oct 25 00:11:02ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:11:02ndhcpc
GigabitEthernet0/Vlan2: received ACK for 176.15.136.72 from 83.102.224.205.
Oct 25 00:11:03ndm
Core::Authenticator: generating.
Oct 25 00:11:03ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:11:04ndm
Core::Authenticator: generating.
Oct 25 00:11:04ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:11:06ndm
Core::Authenticator: generating.
Oct 25 00:11:06ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:11:07ndm
Core::Authenticator: generating.
Oct 25 00:11:07ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:11:08ndm
Core::Authenticator: generating.
Oct 25 00:11:08ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:11:10ndm
Core::Authenticator: generating.
Oct 25 00:11:10ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:11:11ndm
Core::Authenticator: generating.
Oct 25 00:11:11ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:11:12ndm
Core::Authenticator: generating.
Oct 25 00:11:12ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:11:14ndm
Core::Authenticator: generating.
Oct 25 00:11:14ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:11:15ndm
Core::Authenticator: generating.
Oct 25 00:11:15ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:11:16ndm
Core::Authenticator: generating.
Oct 25 00:11:16ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:11:18ndm
Core::Authenticator: generating.
Oct 25 00:11:18ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:11:19ndm
Core::Authenticator: generating.
Oct 25 00:11:19ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:11:20ndm
Core::Authenticator: generating.
Oct 25 00:11:20ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:11:22ndm
Core::Authenticator: generating.
Oct 25 00:11:22ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:11:23ndm
Core::Authenticator: generating.
Oct 25 00:11:23ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:11:24ndm
Core::Authenticator: generating.
Oct 25 00:11:24ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:11:26ndm
Core::Authenticator: generating.
Oct 25 00:11:26ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:11:27ndm
Core::Authenticator: generating.
Oct 25 00:11:27ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:11:29ndm
Core::Authenticator: generating.
Oct 25 00:11:29ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:11:30ndm
Core::Authenticator: generating.
Oct 25 00:11:30ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:11:31ndm
Core::Authenticator: generating.
Oct 25 00:11:31ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:11:32ndm
Core::Authenticator: generating.
Oct 25 00:11:33ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:11:34ndm
Core::Authenticator: generating.
Oct 25 00:11:34ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:11:35ndm
Core::Authenticator: generating.
Oct 25 00:11:35ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:11:37ndm
Core::Authenticator: generating.
Oct 25 00:11:37ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:11:38ndm
Core::Authenticator: generating.
Oct 25 00:11:38ndm
Core::Authenticator: user "admin": invalid password.
Oct 25 00:11:39ndm
Core::Authenticator: no such user: "adsl".
Oct 25 00:11:41ndm
Core::Authenticator: no such user: "adsl".
Oct 25 00:11:42ndm
Core::Authenticator: no such user: "osteam".
Oct 25 00:11:43ndm
Core::Authenticator: no such user: "osteam".
Oct 25 00:11:45ndm
Core::Authenticator: access to "torrent" denied for user "root".
Oct 25 00:11:46ndm
Core::Authenticator: access to "torrent" denied for user "root".
Oct 25 00:11:47ndm
Core::Authenticator: no such user: "ZXDSL".
Oct 25 00:11:49ndm
Core::Authenticator: no such user: "ZXDSL".
Oct 25 00:11:50ndm
Core::Authenticator: missing a user name.
Oct 25 00:11:51ndm
Core::Authenticator: missing a user name.

К слову об https...

Share this post


Link to post
Share on other sites
  • 0
В 18.10.2017 в 15:42, Le ecureuil сказал:

А что, уже лезут по https? :)

На самом деле там механизм авторизации все равно един, потому нет необходимости задавать lockout-policy на https - оно уже работает.

Потыкался к себе (2.11A5):

Если по http идти, то неуспешные попытки войти не логгируются. Появляется только лог о бане ip

Если по https идти, то неуспешные попытки логгируются,  но бан не наступает.

Так что для https пока не работает.

Edited by r13
  • Upvote 1

Share this post


Link to post
Share on other sites
  • 0
3 часа назад, r13 сказал:

Так что для https пока не работает.

О чём я и веду речь, создав сей топ!

Share this post


Link to post
Share on other sites
  • 0
В 25.10.2017 в 19:57, Le ecureuil сказал:

Починено, в следующем draft должно работать как надо.

Скрытый текст
Nov 01 06:13:02ndm
Core::Authenticator: generating.
Nov 01 06:13:02ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:04ndm
Core::Authenticator: generating.
Nov 01 06:13:04ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:05ndm
Core::Authenticator: generating.
Nov 01 06:13:05ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:06ndm
Core::Authenticator: generating.
Nov 01 06:13:06ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:07ndm
Core::Authenticator: generating.
Nov 01 06:13:07ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:09ndm
Core::Authenticator: generating.
Nov 01 06:13:09ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:10ndm
Core::Authenticator: generating.
Nov 01 06:13:10ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:11ndm
Core::Authenticator: generating.
Nov 01 06:13:11ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:12ndm
Core::Authenticator: generating.
Nov 01 06:13:12ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:14ndm
Core::Authenticator: generating.
Nov 01 06:13:14ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:15ndm
Core::Authenticator: generating.
Nov 01 06:13:15ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:16ndm
Core::Authenticator: generating.
Nov 01 06:13:16ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:17ndm
Core::Authenticator: generating.
Nov 01 06:13:17ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:19ndm
Core::Authenticator: generating.
Nov 01 06:13:19ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:20ndm
Core::Authenticator: generating.
Nov 01 06:13:20ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:21ndm
Core::Authenticator: generating.
Nov 01 06:13:21ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:22ndm
Core::Authenticator: generating.
Nov 01 06:13:22ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:24ndm
Core::Authenticator: generating.
Nov 01 06:13:24ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:25ndm
Core::Authenticator: generating.
Nov 01 06:13:25ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:26ndm
Core::Authenticator: generating.
Nov 01 06:13:26ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:30ndm
Core::Authenticator: generating.
Nov 01 06:13:30ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:32ndm
Core::Authenticator: generating.
Nov 01 06:13:32ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:33ndm
Core::Authenticator: generating.
Nov 01 06:13:33ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:34ndm
Core::Authenticator: generating.
Nov 01 06:13:34ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:35ndm
Core::Authenticator: generating.
Nov 01 06:13:35ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:37ndm
Core::Authenticator: generating.
Nov 01 06:13:37ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:38ndm
Core::Authenticator: generating.
Nov 01 06:13:38ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:39ndm
Core::Authenticator: generating.
Nov 01 06:13:39ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:40ndm
Core::Authenticator: generating.
Nov 01 06:13:40ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:42ndm
Core::Authenticator: generating.
Nov 01 06:13:42ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:43ndm
Core::Authenticator: generating.
Nov 01 06:13:43ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:44ndm
Core::Authenticator: generating.
Nov 01 06:13:44ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:45ndm
Core::Authenticator: generating.
Nov 01 06:13:45ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:47ndm
Core::Authenticator: generating.
Nov 01 06:13:47ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:48ndm
Core::Authenticator: generating.
Nov 01 06:13:48ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:49ndm
Core::Authenticator: generating.
Nov 01 06:13:49ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:50ndm
Core::Authenticator: generating.
Nov 01 06:13:50ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:52ndm
Core::Authenticator: generating.
Nov 01 06:13:52ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:53ndm
Core::Authenticator: generating.
Nov 01 06:13:53ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:54ndm
Core::Authenticator: generating.
Nov 01 06:13:54ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:55ndm
Core::Authenticator: generating.
Nov 01 06:13:55ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:57ndm
Core::Authenticator: generating.
Nov 01 06:13:57ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:58ndm
Core::Authenticator: generating.
Nov 01 06:13:58ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:59ndm
Core::Authenticator: generating.
Nov 01 06:13:59ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:14:00ndm
Core::Authenticator: generating.
Nov 01 06:14:00ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:14:02ndm
Core::Authenticator: generating.
Nov 01 06:14:02ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:14:03ndm
Core::Authenticator: generating.
Nov 01 06:14:03ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:14:04ndm
Core::Authenticator: generating.
Nov 01 06:14:04ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:14:05ndm
Core::Authenticator: generating.
Nov 01 06:14:05ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:14:07ndm
Core::Authenticator: generating.
Nov 01 06:14:07ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:14:08ndm
Core::Authenticator: generating.
Nov 01 06:14:08ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:14:09ndm
Core::Authenticator: generating.
Nov 01 06:14:09ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:14:10ndm
Core::Authenticator: no such user: "adsl".
Nov 01 06:14:12ndm
Core::Authenticator: no such user: "adsl".
Nov 01 06:14:13ndm
Core::Authenticator: no such user: "osteam".
Nov 01 06:14:14ndm
Core::Authenticator: no such user: "osteam".
Nov 01 06:14:15ndm
Core::Authenticator: access to "torrent" denied for user "root".
Nov 01 06:14:17ndm
Core::Authenticator: access to "torrent" denied for user "root".
Nov 01 06:14:18ndm
Core::Authenticator: no such user: "ZXDSL".
Nov 01 06:14:19ndm
Core::Authenticator: no such user: "ZXDSL".
Nov 01 06:14:20ndm
Core::Authenticator: missing a user name.
Nov 01 06:14:24ndm
Core::Syslog: last message repeated 3 times.
Nov 01 06:14:25ndm
Core::Authenticator: no such user: "Cisco".
Nov 01 06:14:27ndm
Core::Authenticator: no such user: "Cisco".
Nov 01 06:14:28ndm
Core::Authenticator: missing a user name.
Nov 01 06:14:29ndm
Core::Authenticator: missing a user name.
Nov 01 06:14:30ndm
Core::Authenticator: no such user: "cisco".
Nov 01 06:14:32ndm
Core::Authenticator: no such user: "cisco".
Nov 01 06:14:33ndm
Core::Authenticator: generating.
Nov 01 06:14:33ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:14:34ndm
Core::Authenticator: generating.
Nov 01 06:14:34ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:14:35ndm
Core::Authenticator: generating.
Nov 01 06:14:35ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:14:37ndm
Core::Authenticator: generating.
Nov 01 06:14:37ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:14:38ndm
Core::Authenticator: generating.
Nov 01 06:14:38ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:14:39ndm
Core::Authenticator: generating.
Nov 01 06:14:39ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:14:40ndm
Core::Authenticator: missing a user name.
Nov 01 06:14:52ndm
Core::Syslog: last message repeated 9 times.
Nov 01 06:14:53ndm
Core::Authenticator: no such user: "enable".
Nov 01 06:14:54ndm
Core::Authenticator: no such user: "enable".
Nov 01 06:14:55ndm
Core::Authenticator: no such user: "pnadmin".
Nov 01 06:14:57ndm
Core::Authenticator: no such user: "pnadmin".
Nov 01 06:14:58ndm
Core::Authenticator: access to "torrent" denied for user "root".
Nov 01 06:14:59ndm
Core::Authenticator: access to "torrent" denied for user "root".

2.11.A.6.0-0

Share this post


Link to post
Share on other sites
  • 0

В webui доступ к веб-конфигуратору через Интернет disable, хотя в startup-config внезапно:

ip http port 80
ip http security-level private
ip http lockout-policy 4 60 1
ip http ssl enable
ip http ssl redirect

 

Share this post


Link to post
Share on other sites
  • 0

Хехе, а вот ещё забавней кусок лога:

[E] Nov  1 06:11:15 ndm: Core::Authenticator: no such user: "kyivstar".
[E] Nov  1 06:11:16 ndm: Core::Authenticator: no such user: "kyivstar".
Nov  1 06:11:17 ndm: Core::Authenticator: generating.
[E] Nov  1 06:11:17 ndm: Core::Authenticator: user "admin": invalid password.
Nov  1 06:11:19 ndm: Core::Authenticator: generating.
[E] Nov  1 06:11:19 ndm: Core::Authenticator: user "admin": invalid password.
[E] Nov  1 06:11:20 ndm: Core::Authenticator: no such user: "telekom".
[E] Nov  1 06:11:21 ndm: Core::Authenticator: no such user: "telekom".
[E] Nov  1 06:11:22 ndm: Core::Authenticator: no such user: "superadmin".
[E] Nov  1 06:11:24 ndm: Core::Authenticator: no such user: "superadmin".

Особливо порадовал Киевстар! :mrgreen:

Share this post


Link to post
Share on other sites
  • 0
4 минуты назад, Mamay сказал:

В webui доступ к веб-конфигуратору через Интернет disable, хотя в startup-config внезапно:

ip http port 80
ip http security-level private
ip http lockout-policy 4 60 1
ip http ssl enable
ip http ssl redirect

 

ip http security-level private - это и есть "disable" в веб

Share this post


Link to post
Share on other sites
  • 0
1 минуту назад, r13 сказал:

ip http security-level private - это и есть "disable" в веб

Ах да. Не подумал. На 80 порту внутри висит оно. Но суть проблемы не меняет. Бот атакует с завидным постоянством меня не уходя в баню...

Share this post


Link to post
Share on other sites
  • 0
5 минут назад, Mamay сказал:

Ах да. Не подумал. На 80 порту внутри висит оно. Но суть проблемы не меняет. Бот атакует с завидным постоянством меня не уходя в баню...

То есть при таких настройках(наружу ничего не выставлено) все равно боты долбятся?

А это случаем не в телнет они у вас долбятся?

Edited by r13

Share this post


Link to post
Share on other sites
  • 0
1 минуту назад, r13 сказал:

То есть при таких настройках(наружу ничего не выставлено) все равно боты долбятся?

Бинго! Онли 443 открыт...

Share this post


Link to post
Share on other sites
  • 0
Только что, Mamay сказал:

Бинго! Онли 443 открыт...

Мне кажется это логи не от веба...

Share this post


Link to post
Share on other sites
  • 0
Только что, r13 сказал:

Мне кажется это логи не от веба...

О как! А простите от какого протокола сии логи по вашим ощущениям? telnet/ftp security-level private. ssh тут отродясь не было...

Share this post


Link to post
Share on other sites
  • 0

Хм... На порту 8090 висел ещё transmission в мире. Сказал disable...

Share this post


Link to post
Share on other sites
  • 0
14 минуты назад, Mamay сказал:

О как! А простите от какого протокола сии логи по вашим ощущениям? telnet/ftp security-level private. ssh тут отродясь не было...

Не знаю, но попробовал у себя по https поломиться в логе только одна строчка о бане и никаких похожих на ваши, то есть аналогично http.

 

Share this post


Link to post
Share on other sites
  • 0
2 часа назад, Mamay сказал:
  Скрыть содержимое
Nov 01 06:13:02ndm
Core::Authenticator: generating.
Nov 01 06:13:02ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:04ndm
Core::Authenticator: generating.
Nov 01 06:13:04ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:05ndm
Core::Authenticator: generating.
Nov 01 06:13:05ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:06ndm
Core::Authenticator: generating.
Nov 01 06:13:06ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:07ndm
Core::Authenticator: generating.
Nov 01 06:13:07ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:09ndm
Core::Authenticator: generating.
Nov 01 06:13:09ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:10ndm
Core::Authenticator: generating.
Nov 01 06:13:10ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:11ndm
Core::Authenticator: generating.
Nov 01 06:13:11ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:12ndm
Core::Authenticator: generating.
Nov 01 06:13:12ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:14ndm
Core::Authenticator: generating.
Nov 01 06:13:14ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:15ndm
Core::Authenticator: generating.
Nov 01 06:13:15ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:16ndm
Core::Authenticator: generating.
Nov 01 06:13:16ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:17ndm
Core::Authenticator: generating.
Nov 01 06:13:17ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:19ndm
Core::Authenticator: generating.
Nov 01 06:13:19ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:20ndm
Core::Authenticator: generating.
Nov 01 06:13:20ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:21ndm
Core::Authenticator: generating.
Nov 01 06:13:21ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:22ndm
Core::Authenticator: generating.
Nov 01 06:13:22ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:24ndm
Core::Authenticator: generating.
Nov 01 06:13:24ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:25ndm
Core::Authenticator: generating.
Nov 01 06:13:25ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:26ndm
Core::Authenticator: generating.
Nov 01 06:13:26ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:30ndm
Core::Authenticator: generating.
Nov 01 06:13:30ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:32ndm
Core::Authenticator: generating.
Nov 01 06:13:32ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:33ndm
Core::Authenticator: generating.
Nov 01 06:13:33ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:34ndm
Core::Authenticator: generating.
Nov 01 06:13:34ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:35ndm
Core::Authenticator: generating.
Nov 01 06:13:35ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:37ndm
Core::Authenticator: generating.
Nov 01 06:13:37ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:38ndm
Core::Authenticator: generating.
Nov 01 06:13:38ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:39ndm
Core::Authenticator: generating.
Nov 01 06:13:39ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:40ndm
Core::Authenticator: generating.
Nov 01 06:13:40ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:42ndm
Core::Authenticator: generating.
Nov 01 06:13:42ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:43ndm
Core::Authenticator: generating.
Nov 01 06:13:43ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:44ndm
Core::Authenticator: generating.
Nov 01 06:13:44ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:45ndm
Core::Authenticator: generating.
Nov 01 06:13:45ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:47ndm
Core::Authenticator: generating.
Nov 01 06:13:47ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:48ndm
Core::Authenticator: generating.
Nov 01 06:13:48ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:49ndm
Core::Authenticator: generating.
Nov 01 06:13:49ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:50ndm
Core::Authenticator: generating.
Nov 01 06:13:50ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:52ndm
Core::Authenticator: generating.
Nov 01 06:13:52ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:53ndm
Core::Authenticator: generating.
Nov 01 06:13:53ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:54ndm
Core::Authenticator: generating.
Nov 01 06:13:54ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:55ndm
Core::Authenticator: generating.
Nov 01 06:13:55ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:57ndm
Core::Authenticator: generating.
Nov 01 06:13:57ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:58ndm
Core::Authenticator: generating.
Nov 01 06:13:58ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:13:59ndm
Core::Authenticator: generating.
Nov 01 06:13:59ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:14:00ndm
Core::Authenticator: generating.
Nov 01 06:14:00ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:14:02ndm
Core::Authenticator: generating.
Nov 01 06:14:02ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:14:03ndm
Core::Authenticator: generating.
Nov 01 06:14:03ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:14:04ndm
Core::Authenticator: generating.
Nov 01 06:14:04ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:14:05ndm
Core::Authenticator: generating.
Nov 01 06:14:05ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:14:07ndm
Core::Authenticator: generating.
Nov 01 06:14:07ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:14:08ndm
Core::Authenticator: generating.
Nov 01 06:14:08ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:14:09ndm
Core::Authenticator: generating.
Nov 01 06:14:09ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:14:10ndm
Core::Authenticator: no such user: "adsl".
Nov 01 06:14:12ndm
Core::Authenticator: no such user: "adsl".
Nov 01 06:14:13ndm
Core::Authenticator: no such user: "osteam".
Nov 01 06:14:14ndm
Core::Authenticator: no such user: "osteam".
Nov 01 06:14:15ndm
Core::Authenticator: access to "torrent" denied for user "root".
Nov 01 06:14:17ndm
Core::Authenticator: access to "torrent" denied for user "root".
Nov 01 06:14:18ndm
Core::Authenticator: no such user: "ZXDSL".
Nov 01 06:14:19ndm
Core::Authenticator: no such user: "ZXDSL".
Nov 01 06:14:20ndm
Core::Authenticator: missing a user name.
Nov 01 06:14:24ndm
Core::Syslog: last message repeated 3 times.
Nov 01 06:14:25ndm
Core::Authenticator: no such user: "Cisco".
Nov 01 06:14:27ndm
Core::Authenticator: no such user: "Cisco".
Nov 01 06:14:28ndm
Core::Authenticator: missing a user name.
Nov 01 06:14:29ndm
Core::Authenticator: missing a user name.
Nov 01 06:14:30ndm
Core::Authenticator: no such user: "cisco".
Nov 01 06:14:32ndm
Core::Authenticator: no such user: "cisco".
Nov 01 06:14:33ndm
Core::Authenticator: generating.
Nov 01 06:14:33ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:14:34ndm
Core::Authenticator: generating.
Nov 01 06:14:34ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:14:35ndm
Core::Authenticator: generating.
Nov 01 06:14:35ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:14:37ndm
Core::Authenticator: generating.
Nov 01 06:14:37ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:14:38ndm
Core::Authenticator: generating.
Nov 01 06:14:38ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:14:39ndm
Core::Authenticator: generating.
Nov 01 06:14:39ndm
Core::Authenticator: user "admin": invalid password.
Nov 01 06:14:40ndm
Core::Authenticator: missing a user name.
Nov 01 06:14:52ndm
Core::Syslog: last message repeated 9 times.
Nov 01 06:14:53ndm
Core::Authenticator: no such user: "enable".
Nov 01 06:14:54ndm
Core::Authenticator: no such user: "enable".
Nov 01 06:14:55ndm
Core::Authenticator: no such user: "pnadmin".
Nov 01 06:14:57ndm
Core::Authenticator: no such user: "pnadmin".
Nov 01 06:14:58ndm
Core::Authenticator: access to "torrent" denied for user "root".
Nov 01 06:14:59ndm
Core::Authenticator: access to "torrent" denied for user "root".

2.11.A.6.0-0

Это от transmission лог, лог от Web выглядить иначе.

  • Thanks 1

Share this post


Link to post
Share on other sites
  • 0

@Le ecureuilтогда такой вопрос. Нельзя ли запилить, хотя бы в cli, возможность применять lockout-policy на http порты отличные от 80/443? 

А-ля:

ip http port 80, 8020, 8080, 8090
ip http 80 security-level private
ip http 8020, 8080, 8090 security-level public

 

Share this post


Link to post
Share on other sites
  • 0
Только что, Mamay сказал:

@Le ecureuilтогда такой вопрос. Нельзя ли запилить, хотя бы в cli, возможность применять lockout-policy на http порты отличные от 80/443? 

А-ля:

ip http port 80, 8020, 8080, 8090
ip http 80 security-level private
ip http 8020, 8080, 8090 security-level public

 

Я вам лично советую для transmission выделить отдельный поддомен KeenDNS, и сделать proxy. А снаружи доступ к transmission закрыть. В итоге одним махом сразу несколько зайцев, а отдуваться за ботов будет nginx.

  • Thanks 2

Share this post


Link to post
Share on other sites
  • 0

Спасибо. Я вас услышал. Топ можно закрывать. 

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Answer this question...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.


  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...