Hello everyone,
My bare metal server is often under attack and trig OVH mitigation.
To limit overload, I have configured and activated the OVH "Edge Network Firewall".
The amount of dropped packet from my soft Firewall decrease but I still receive few unwanted packets.
example: TCP:80 or TCP:22 from 113.185.21.37 (VietNam Post and Telecom Corporation)
Does somebody has an idear?
thanks by advance
Here is my "Edge Network Firewall" config:
"Edge Network Firewall": activated
rules:
prio=0 action=accept protocol=TCP ESTABLISH=true
prio=1 action=accept protocol=ipv4 source_ip=<myIP>
prio=19 action=deny protocol=ipv4 source_ip=all
mitagation: activation=permanent.
Hello,
I have the same issue with my Esxi.
I'm trying to allow only my public ip to connect, but without success.
3 Autoriser TCP MY IP 443 Actif
4 Autoriser TCP MY IP 443 Actif
5 Refuser TCP tous 443 established Actif
8 Refuser TCP tous 443
If someone get an idea.
Thank you.