Mamay Posted October 18, 2017 Share Posted October 18, 2017 Giga 2 - 2.11.A.4.0-2 ip https lockout-policy 4 60 1 - насколько я понимаю некорректно и работает лишь вариант без security ip http lockout-policy 4 60 1? Есть ли шансы на появление lockout на https? Quote Link to comment Share on other sites More sharing options...
0 Le ecureuil Posted October 18, 2017 Share Posted October 18, 2017 1 час назад, Mamay сказал: Giga 2 - 2.11.A.4.0-2 ip https lockout-policy 4 60 1 - насколько я понимаю некорректно и работает лишь вариант без security ip http lockout-policy 4 60 1? Есть ли шансы на появление lockout на https? А что, уже лезут по https? На самом деле там механизм авторизации все равно един, потому нет необходимости задавать lockout-policy на https - оно уже работает. Quote Link to comment Share on other sites More sharing options...
0 Mamay Posted October 18, 2017 Author Share Posted October 18, 2017 10 минут назад, Le ecureuil сказал: А что, уже лезут по https? Да. Только что почистил свои логи. С 8-45 до 8-47 бот упорно пытался подобрать пароль для пользователей: user, cicso, admin, test. Собственно с чего я и задал сей вопрос, ибо ip http security-level private! Quote Link to comment Share on other sites More sharing options...
0 Le ecureuil Posted October 18, 2017 Share Posted October 18, 2017 5 минут назад, Mamay сказал: Да. Только что почистил свои логи. С 8-45 до 8-47 бот упорно пытался подобрать пароль для пользователей: user, cicso, admin, test. Собственно с чего я и задал сей вопрос, ибо ip http security-level private! Что-то здесь не так. Какие-нибудь порты снаружи открыты явно? Quote Link to comment Share on other sites More sharing options...
0 Mamay Posted October 18, 2017 Author Share Posted October 18, 2017 1 час назад, Le ecureuil сказал: Что-то здесь не так. Какие-нибудь порты снаружи открыты явно? Токма 443. Сам в шоке. Quote Link to comment Share on other sites More sharing options...
0 Marceline Posted October 18, 2017 Share Posted October 18, 2017 (edited) 2 часа назад, Le ecureuil сказал: А что, уже лезут по https? очень часто сканируют через "RouterScan" по логам с роутера видно одинаковый подбор логинов (admin, root и т.д) (хорошо что эксплойты не нашли под нашу прошивку) Edited October 18, 2017 by Marceline Quote Link to comment Share on other sites More sharing options...
0 Mamay Posted October 25, 2017 Author Share Posted October 25, 2017 Скрытый текст Oct 25 00:09:32ndm Core::Authenticator: generating. Oct 25 00:09:32ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:09:33ndm Core::Authenticator: generating. Oct 25 00:09:33ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:09:35ndm Core::Authenticator: generating. Oct 25 00:09:35ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:09:36ndm Core::Authenticator: generating. Oct 25 00:09:36ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:09:37ndm Core::Authenticator: generating. Oct 25 00:09:37ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:09:39ndm Core::Authenticator: generating. Oct 25 00:09:39ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:09:40ndm Core::Authenticator: generating. Oct 25 00:09:40ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:09:41ndm Core::Authenticator: generating. Oct 25 00:09:41ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:09:43ndm Core::Authenticator: generating. Oct 25 00:09:43ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:09:44ndm Core::Authenticator: generating. Oct 25 00:09:44ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:09:45ndm Core::Authenticator: generating. Oct 25 00:09:45ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:09:47ndm Core::Authenticator: generating. Oct 25 00:09:47ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:09:48ndm Core::Authenticator: generating. Oct 25 00:09:48ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:09:49ndm Core::Authenticator: generating. Oct 25 00:09:49ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:09:51ndm Core::Authenticator: generating. Oct 25 00:09:51ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:09:52ndm Core::Authenticator: generating. Oct 25 00:09:52ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:09:53ndm Core::Authenticator: generating. Oct 25 00:09:53ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:09:55ndm Core::Authenticator: generating. Oct 25 00:09:55ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:09:56ndm Core::Authenticator: generating. Oct 25 00:09:56ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:09:57ndm Core::Authenticator: generating. Oct 25 00:09:57ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:09:59ndm Core::Authenticator: generating. Oct 25 00:09:59ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:00ndm Core::Authenticator: generating. Oct 25 00:10:00ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:01ndm Core::Authenticator: generating. Oct 25 00:10:01ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:03ndm Core::Authenticator: generating. Oct 25 00:10:03ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:04ndm Core::Authenticator: generating. Oct 25 00:10:04ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:05ndm Core::Authenticator: generating. Oct 25 00:10:05ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:07ndm Core::Authenticator: generating. Oct 25 00:10:07ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:08ndm Core::Authenticator: generating. Oct 25 00:10:08ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:09ndm Core::Authenticator: generating. Oct 25 00:10:09ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:11ndm Core::Authenticator: generating. Oct 25 00:10:11ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:12ndm Core::Authenticator: generating. Oct 25 00:10:12ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:13ndm Core::Authenticator: generating. Oct 25 00:10:13ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:15ndm Core::Authenticator: generating. Oct 25 00:10:15ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:16ndm Core::Authenticator: generating. Oct 25 00:10:16ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:17ndm Core::Authenticator: generating. Oct 25 00:10:17ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:19ndm Core::Authenticator: generating. Oct 25 00:10:19ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:20ndm Core::Authenticator: generating. Oct 25 00:10:20ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:22ndm Core::Authenticator: generating. Oct 25 00:10:22ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:23ndm Core::Authenticator: generating. Oct 25 00:10:23ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:24ndm Core::Authenticator: generating. Oct 25 00:10:24ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:26ndm Core::Authenticator: generating. Oct 25 00:10:26ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:27ndm Core::Authenticator: generating. Oct 25 00:10:27ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:28ndm Core::Authenticator: generating. Oct 25 00:10:28ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:30ndm Core::Authenticator: generating. Oct 25 00:10:30ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:31ndm Core::Authenticator: generating. Oct 25 00:10:31ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:32ndm Core::Authenticator: generating. Oct 25 00:10:32ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:34ndm Core::Authenticator: generating. Oct 25 00:10:34ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:35ndm Core::Authenticator: generating. Oct 25 00:10:35ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:36ndm Core::Authenticator: generating. Oct 25 00:10:36ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:38ndm Core::Authenticator: generating. Oct 25 00:10:38ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:39ndm Core::Authenticator: generating. Oct 25 00:10:39ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:40ndm Core::Authenticator: generating. Oct 25 00:10:40ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:42ndm Core::Authenticator: generating. Oct 25 00:10:42ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:43ndm Core::Authenticator: generating. Oct 25 00:10:43ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:44ndm Core::Authenticator: generating. Oct 25 00:10:44ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:46ndm Core::Authenticator: generating. Oct 25 00:10:46ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:47ndm Core::Authenticator: generating. Oct 25 00:10:47ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:48ndm Core::Authenticator: generating. Oct 25 00:10:48ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:50ndm Core::Authenticator: generating. Oct 25 00:10:50ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:51ndm Core::Authenticator: generating. Oct 25 00:10:51ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:52ndm Core::Authenticator: generating. Oct 25 00:10:52ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:54ndm Core::Authenticator: generating. Oct 25 00:10:54ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:55ndm Core::Authenticator: generating. Oct 25 00:10:55ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:56ndm Core::Authenticator: generating. Oct 25 00:10:56ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:58ndm Core::Authenticator: generating. Oct 25 00:10:58ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:10:59ndm Core::Authenticator: generating. Oct 25 00:10:59ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:11:00ndm Core::Authenticator: generating. Oct 25 00:11:00ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:11:02ndm Core::Authenticator: generating. Oct 25 00:11:02ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:11:02ndhcpc GigabitEthernet0/Vlan2: received ACK for 176.15.136.72 from 83.102.224.205. Oct 25 00:11:03ndm Core::Authenticator: generating. Oct 25 00:11:03ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:11:04ndm Core::Authenticator: generating. Oct 25 00:11:04ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:11:06ndm Core::Authenticator: generating. Oct 25 00:11:06ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:11:07ndm Core::Authenticator: generating. Oct 25 00:11:07ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:11:08ndm Core::Authenticator: generating. Oct 25 00:11:08ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:11:10ndm Core::Authenticator: generating. Oct 25 00:11:10ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:11:11ndm Core::Authenticator: generating. Oct 25 00:11:11ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:11:12ndm Core::Authenticator: generating. Oct 25 00:11:12ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:11:14ndm Core::Authenticator: generating. Oct 25 00:11:14ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:11:15ndm Core::Authenticator: generating. Oct 25 00:11:15ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:11:16ndm Core::Authenticator: generating. Oct 25 00:11:16ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:11:18ndm Core::Authenticator: generating. Oct 25 00:11:18ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:11:19ndm Core::Authenticator: generating. Oct 25 00:11:19ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:11:20ndm Core::Authenticator: generating. Oct 25 00:11:20ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:11:22ndm Core::Authenticator: generating. Oct 25 00:11:22ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:11:23ndm Core::Authenticator: generating. Oct 25 00:11:23ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:11:24ndm Core::Authenticator: generating. Oct 25 00:11:24ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:11:26ndm Core::Authenticator: generating. Oct 25 00:11:26ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:11:27ndm Core::Authenticator: generating. Oct 25 00:11:27ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:11:29ndm Core::Authenticator: generating. Oct 25 00:11:29ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:11:30ndm Core::Authenticator: generating. Oct 25 00:11:30ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:11:31ndm Core::Authenticator: generating. Oct 25 00:11:31ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:11:32ndm Core::Authenticator: generating. Oct 25 00:11:33ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:11:34ndm Core::Authenticator: generating. Oct 25 00:11:34ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:11:35ndm Core::Authenticator: generating. Oct 25 00:11:35ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:11:37ndm Core::Authenticator: generating. Oct 25 00:11:37ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:11:38ndm Core::Authenticator: generating. Oct 25 00:11:38ndm Core::Authenticator: user "admin": invalid password. Oct 25 00:11:39ndm Core::Authenticator: no such user: "adsl". Oct 25 00:11:41ndm Core::Authenticator: no such user: "adsl". Oct 25 00:11:42ndm Core::Authenticator: no such user: "osteam". Oct 25 00:11:43ndm Core::Authenticator: no such user: "osteam". Oct 25 00:11:45ndm Core::Authenticator: access to "torrent" denied for user "root". Oct 25 00:11:46ndm Core::Authenticator: access to "torrent" denied for user "root". Oct 25 00:11:47ndm Core::Authenticator: no such user: "ZXDSL". Oct 25 00:11:49ndm Core::Authenticator: no such user: "ZXDSL". Oct 25 00:11:50ndm Core::Authenticator: missing a user name. Oct 25 00:11:51ndm Core::Authenticator: missing a user name. К слову об https... Quote Link to comment Share on other sites More sharing options...
0 r13 Posted October 25, 2017 Share Posted October 25, 2017 (edited) В 18.10.2017 в 15:42, Le ecureuil сказал: А что, уже лезут по https? На самом деле там механизм авторизации все равно един, потому нет необходимости задавать lockout-policy на https - оно уже работает. Потыкался к себе (2.11A5): Если по http идти, то неуспешные попытки войти не логгируются. Появляется только лог о бане ip Если по https идти, то неуспешные попытки логгируются, но бан не наступает. Так что для https пока не работает. Edited October 25, 2017 by r13 1 Quote Link to comment Share on other sites More sharing options...
0 Mamay Posted October 25, 2017 Author Share Posted October 25, 2017 3 часа назад, r13 сказал: Так что для https пока не работает. О чём я и веду речь, создав сей топ! Quote Link to comment Share on other sites More sharing options...
0 Le ecureuil Posted October 25, 2017 Share Posted October 25, 2017 Починено, в следующем draft должно работать как надо. 4 Quote Link to comment Share on other sites More sharing options...
0 Mamay Posted November 1, 2017 Author Share Posted November 1, 2017 В 25.10.2017 в 19:57, Le ecureuil сказал: Починено, в следующем draft должно работать как надо. Скрытый текст Nov 01 06:13:02ndm Core::Authenticator: generating. Nov 01 06:13:02ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:04ndm Core::Authenticator: generating. Nov 01 06:13:04ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:05ndm Core::Authenticator: generating. Nov 01 06:13:05ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:06ndm Core::Authenticator: generating. Nov 01 06:13:06ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:07ndm Core::Authenticator: generating. Nov 01 06:13:07ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:09ndm Core::Authenticator: generating. Nov 01 06:13:09ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:10ndm Core::Authenticator: generating. Nov 01 06:13:10ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:11ndm Core::Authenticator: generating. Nov 01 06:13:11ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:12ndm Core::Authenticator: generating. Nov 01 06:13:12ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:14ndm Core::Authenticator: generating. Nov 01 06:13:14ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:15ndm Core::Authenticator: generating. Nov 01 06:13:15ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:16ndm Core::Authenticator: generating. Nov 01 06:13:16ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:17ndm Core::Authenticator: generating. Nov 01 06:13:17ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:19ndm Core::Authenticator: generating. Nov 01 06:13:19ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:20ndm Core::Authenticator: generating. Nov 01 06:13:20ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:21ndm Core::Authenticator: generating. Nov 01 06:13:21ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:22ndm Core::Authenticator: generating. Nov 01 06:13:22ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:24ndm Core::Authenticator: generating. Nov 01 06:13:24ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:25ndm Core::Authenticator: generating. Nov 01 06:13:25ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:26ndm Core::Authenticator: generating. Nov 01 06:13:26ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:30ndm Core::Authenticator: generating. Nov 01 06:13:30ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:32ndm Core::Authenticator: generating. Nov 01 06:13:32ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:33ndm Core::Authenticator: generating. Nov 01 06:13:33ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:34ndm Core::Authenticator: generating. Nov 01 06:13:34ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:35ndm Core::Authenticator: generating. Nov 01 06:13:35ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:37ndm Core::Authenticator: generating. Nov 01 06:13:37ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:38ndm Core::Authenticator: generating. Nov 01 06:13:38ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:39ndm Core::Authenticator: generating. Nov 01 06:13:39ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:40ndm Core::Authenticator: generating. Nov 01 06:13:40ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:42ndm Core::Authenticator: generating. Nov 01 06:13:42ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:43ndm Core::Authenticator: generating. Nov 01 06:13:43ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:44ndm Core::Authenticator: generating. Nov 01 06:13:44ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:45ndm Core::Authenticator: generating. Nov 01 06:13:45ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:47ndm Core::Authenticator: generating. Nov 01 06:13:47ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:48ndm Core::Authenticator: generating. Nov 01 06:13:48ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:49ndm Core::Authenticator: generating. Nov 01 06:13:49ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:50ndm Core::Authenticator: generating. Nov 01 06:13:50ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:52ndm Core::Authenticator: generating. Nov 01 06:13:52ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:53ndm Core::Authenticator: generating. Nov 01 06:13:53ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:54ndm Core::Authenticator: generating. Nov 01 06:13:54ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:55ndm Core::Authenticator: generating. Nov 01 06:13:55ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:57ndm Core::Authenticator: generating. Nov 01 06:13:57ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:58ndm Core::Authenticator: generating. Nov 01 06:13:58ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:59ndm Core::Authenticator: generating. Nov 01 06:13:59ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:14:00ndm Core::Authenticator: generating. Nov 01 06:14:00ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:14:02ndm Core::Authenticator: generating. Nov 01 06:14:02ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:14:03ndm Core::Authenticator: generating. Nov 01 06:14:03ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:14:04ndm Core::Authenticator: generating. Nov 01 06:14:04ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:14:05ndm Core::Authenticator: generating. Nov 01 06:14:05ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:14:07ndm Core::Authenticator: generating. Nov 01 06:14:07ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:14:08ndm Core::Authenticator: generating. Nov 01 06:14:08ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:14:09ndm Core::Authenticator: generating. Nov 01 06:14:09ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:14:10ndm Core::Authenticator: no such user: "adsl". Nov 01 06:14:12ndm Core::Authenticator: no such user: "adsl". Nov 01 06:14:13ndm Core::Authenticator: no such user: "osteam". Nov 01 06:14:14ndm Core::Authenticator: no such user: "osteam". Nov 01 06:14:15ndm Core::Authenticator: access to "torrent" denied for user "root". Nov 01 06:14:17ndm Core::Authenticator: access to "torrent" denied for user "root". Nov 01 06:14:18ndm Core::Authenticator: no such user: "ZXDSL". Nov 01 06:14:19ndm Core::Authenticator: no such user: "ZXDSL". Nov 01 06:14:20ndm Core::Authenticator: missing a user name. Nov 01 06:14:24ndm Core::Syslog: last message repeated 3 times. Nov 01 06:14:25ndm Core::Authenticator: no such user: "Cisco". Nov 01 06:14:27ndm Core::Authenticator: no such user: "Cisco". Nov 01 06:14:28ndm Core::Authenticator: missing a user name. Nov 01 06:14:29ndm Core::Authenticator: missing a user name. Nov 01 06:14:30ndm Core::Authenticator: no such user: "cisco". Nov 01 06:14:32ndm Core::Authenticator: no such user: "cisco". Nov 01 06:14:33ndm Core::Authenticator: generating. Nov 01 06:14:33ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:14:34ndm Core::Authenticator: generating. Nov 01 06:14:34ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:14:35ndm Core::Authenticator: generating. Nov 01 06:14:35ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:14:37ndm Core::Authenticator: generating. Nov 01 06:14:37ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:14:38ndm Core::Authenticator: generating. Nov 01 06:14:38ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:14:39ndm Core::Authenticator: generating. Nov 01 06:14:39ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:14:40ndm Core::Authenticator: missing a user name. Nov 01 06:14:52ndm Core::Syslog: last message repeated 9 times. Nov 01 06:14:53ndm Core::Authenticator: no such user: "enable". Nov 01 06:14:54ndm Core::Authenticator: no such user: "enable". Nov 01 06:14:55ndm Core::Authenticator: no such user: "pnadmin". Nov 01 06:14:57ndm Core::Authenticator: no such user: "pnadmin". Nov 01 06:14:58ndm Core::Authenticator: access to "torrent" denied for user "root". Nov 01 06:14:59ndm Core::Authenticator: access to "torrent" denied for user "root". 2.11.A.6.0-0 Quote Link to comment Share on other sites More sharing options...
0 Mamay Posted November 1, 2017 Author Share Posted November 1, 2017 В webui доступ к веб-конфигуратору через Интернет disable, хотя в startup-config внезапно: ip http port 80 ip http security-level private ip http lockout-policy 4 60 1 ip http ssl enable ip http ssl redirect Quote Link to comment Share on other sites More sharing options...
0 Mamay Posted November 1, 2017 Author Share Posted November 1, 2017 Хехе, а вот ещё забавней кусок лога: [E] Nov 1 06:11:15 ndm: Core::Authenticator: no such user: "kyivstar". [E] Nov 1 06:11:16 ndm: Core::Authenticator: no such user: "kyivstar". Nov 1 06:11:17 ndm: Core::Authenticator: generating. [E] Nov 1 06:11:17 ndm: Core::Authenticator: user "admin": invalid password. Nov 1 06:11:19 ndm: Core::Authenticator: generating. [E] Nov 1 06:11:19 ndm: Core::Authenticator: user "admin": invalid password. [E] Nov 1 06:11:20 ndm: Core::Authenticator: no such user: "telekom". [E] Nov 1 06:11:21 ndm: Core::Authenticator: no such user: "telekom". [E] Nov 1 06:11:22 ndm: Core::Authenticator: no such user: "superadmin". [E] Nov 1 06:11:24 ndm: Core::Authenticator: no such user: "superadmin". Особливо порадовал Киевстар! Quote Link to comment Share on other sites More sharing options...
0 r13 Posted November 1, 2017 Share Posted November 1, 2017 4 минуты назад, Mamay сказал: В webui доступ к веб-конфигуратору через Интернет disable, хотя в startup-config внезапно: ip http port 80 ip http security-level private ip http lockout-policy 4 60 1 ip http ssl enable ip http ssl redirect ip http security-level private - это и есть "disable" в веб Quote Link to comment Share on other sites More sharing options...
0 Mamay Posted November 1, 2017 Author Share Posted November 1, 2017 1 минуту назад, r13 сказал: ip http security-level private - это и есть "disable" в веб Ах да. Не подумал. На 80 порту внутри висит оно. Но суть проблемы не меняет. Бот атакует с завидным постоянством меня не уходя в баню... Quote Link to comment Share on other sites More sharing options...
0 r13 Posted November 1, 2017 Share Posted November 1, 2017 (edited) 5 минут назад, Mamay сказал: Ах да. Не подумал. На 80 порту внутри висит оно. Но суть проблемы не меняет. Бот атакует с завидным постоянством меня не уходя в баню... То есть при таких настройках(наружу ничего не выставлено) все равно боты долбятся? А это случаем не в телнет они у вас долбятся? Edited November 1, 2017 by r13 Quote Link to comment Share on other sites More sharing options...
0 Mamay Posted November 1, 2017 Author Share Posted November 1, 2017 1 минуту назад, r13 сказал: То есть при таких настройках(наружу ничего не выставлено) все равно боты долбятся? Бинго! Онли 443 открыт... Quote Link to comment Share on other sites More sharing options...
0 r13 Posted November 1, 2017 Share Posted November 1, 2017 Только что, Mamay сказал: Бинго! Онли 443 открыт... Мне кажется это логи не от веба... Quote Link to comment Share on other sites More sharing options...
0 Mamay Posted November 1, 2017 Author Share Posted November 1, 2017 Только что, r13 сказал: Мне кажется это логи не от веба... О как! А простите от какого протокола сии логи по вашим ощущениям? telnet/ftp security-level private. ssh тут отродясь не было... Quote Link to comment Share on other sites More sharing options...
0 Mamay Posted November 1, 2017 Author Share Posted November 1, 2017 Хм... На порту 8090 висел ещё transmission в мире. Сказал disable... Quote Link to comment Share on other sites More sharing options...
0 r13 Posted November 1, 2017 Share Posted November 1, 2017 14 минуты назад, Mamay сказал: О как! А простите от какого протокола сии логи по вашим ощущениям? telnet/ftp security-level private. ssh тут отродясь не было... Не знаю, но попробовал у себя по https поломиться в логе только одна строчка о бане и никаких похожих на ваши, то есть аналогично http. Quote Link to comment Share on other sites More sharing options...
0 Le ecureuil Posted November 1, 2017 Share Posted November 1, 2017 2 часа назад, Mamay сказал: Скрыть содержимое Nov 01 06:13:02ndm Core::Authenticator: generating. Nov 01 06:13:02ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:04ndm Core::Authenticator: generating. Nov 01 06:13:04ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:05ndm Core::Authenticator: generating. Nov 01 06:13:05ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:06ndm Core::Authenticator: generating. Nov 01 06:13:06ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:07ndm Core::Authenticator: generating. Nov 01 06:13:07ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:09ndm Core::Authenticator: generating. Nov 01 06:13:09ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:10ndm Core::Authenticator: generating. Nov 01 06:13:10ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:11ndm Core::Authenticator: generating. Nov 01 06:13:11ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:12ndm Core::Authenticator: generating. Nov 01 06:13:12ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:14ndm Core::Authenticator: generating. Nov 01 06:13:14ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:15ndm Core::Authenticator: generating. Nov 01 06:13:15ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:16ndm Core::Authenticator: generating. Nov 01 06:13:16ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:17ndm Core::Authenticator: generating. Nov 01 06:13:17ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:19ndm Core::Authenticator: generating. Nov 01 06:13:19ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:20ndm Core::Authenticator: generating. Nov 01 06:13:20ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:21ndm Core::Authenticator: generating. Nov 01 06:13:21ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:22ndm Core::Authenticator: generating. Nov 01 06:13:22ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:24ndm Core::Authenticator: generating. Nov 01 06:13:24ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:25ndm Core::Authenticator: generating. Nov 01 06:13:25ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:26ndm Core::Authenticator: generating. Nov 01 06:13:26ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:30ndm Core::Authenticator: generating. Nov 01 06:13:30ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:32ndm Core::Authenticator: generating. Nov 01 06:13:32ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:33ndm Core::Authenticator: generating. Nov 01 06:13:33ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:34ndm Core::Authenticator: generating. Nov 01 06:13:34ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:35ndm Core::Authenticator: generating. Nov 01 06:13:35ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:37ndm Core::Authenticator: generating. Nov 01 06:13:37ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:38ndm Core::Authenticator: generating. Nov 01 06:13:38ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:39ndm Core::Authenticator: generating. Nov 01 06:13:39ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:40ndm Core::Authenticator: generating. Nov 01 06:13:40ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:42ndm Core::Authenticator: generating. Nov 01 06:13:42ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:43ndm Core::Authenticator: generating. Nov 01 06:13:43ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:44ndm Core::Authenticator: generating. Nov 01 06:13:44ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:45ndm Core::Authenticator: generating. Nov 01 06:13:45ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:47ndm Core::Authenticator: generating. Nov 01 06:13:47ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:48ndm Core::Authenticator: generating. Nov 01 06:13:48ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:49ndm Core::Authenticator: generating. Nov 01 06:13:49ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:50ndm Core::Authenticator: generating. Nov 01 06:13:50ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:52ndm Core::Authenticator: generating. Nov 01 06:13:52ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:53ndm Core::Authenticator: generating. Nov 01 06:13:53ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:54ndm Core::Authenticator: generating. Nov 01 06:13:54ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:55ndm Core::Authenticator: generating. Nov 01 06:13:55ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:57ndm Core::Authenticator: generating. Nov 01 06:13:57ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:58ndm Core::Authenticator: generating. Nov 01 06:13:58ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:13:59ndm Core::Authenticator: generating. Nov 01 06:13:59ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:14:00ndm Core::Authenticator: generating. Nov 01 06:14:00ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:14:02ndm Core::Authenticator: generating. Nov 01 06:14:02ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:14:03ndm Core::Authenticator: generating. Nov 01 06:14:03ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:14:04ndm Core::Authenticator: generating. Nov 01 06:14:04ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:14:05ndm Core::Authenticator: generating. Nov 01 06:14:05ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:14:07ndm Core::Authenticator: generating. Nov 01 06:14:07ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:14:08ndm Core::Authenticator: generating. Nov 01 06:14:08ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:14:09ndm Core::Authenticator: generating. Nov 01 06:14:09ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:14:10ndm Core::Authenticator: no such user: "adsl". Nov 01 06:14:12ndm Core::Authenticator: no such user: "adsl". Nov 01 06:14:13ndm Core::Authenticator: no such user: "osteam". Nov 01 06:14:14ndm Core::Authenticator: no such user: "osteam". Nov 01 06:14:15ndm Core::Authenticator: access to "torrent" denied for user "root". Nov 01 06:14:17ndm Core::Authenticator: access to "torrent" denied for user "root". Nov 01 06:14:18ndm Core::Authenticator: no such user: "ZXDSL". Nov 01 06:14:19ndm Core::Authenticator: no such user: "ZXDSL". Nov 01 06:14:20ndm Core::Authenticator: missing a user name. Nov 01 06:14:24ndm Core::Syslog: last message repeated 3 times. Nov 01 06:14:25ndm Core::Authenticator: no such user: "Cisco". Nov 01 06:14:27ndm Core::Authenticator: no such user: "Cisco". Nov 01 06:14:28ndm Core::Authenticator: missing a user name. Nov 01 06:14:29ndm Core::Authenticator: missing a user name. Nov 01 06:14:30ndm Core::Authenticator: no such user: "cisco". Nov 01 06:14:32ndm Core::Authenticator: no such user: "cisco". Nov 01 06:14:33ndm Core::Authenticator: generating. Nov 01 06:14:33ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:14:34ndm Core::Authenticator: generating. Nov 01 06:14:34ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:14:35ndm Core::Authenticator: generating. Nov 01 06:14:35ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:14:37ndm Core::Authenticator: generating. Nov 01 06:14:37ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:14:38ndm Core::Authenticator: generating. Nov 01 06:14:38ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:14:39ndm Core::Authenticator: generating. Nov 01 06:14:39ndm Core::Authenticator: user "admin": invalid password. Nov 01 06:14:40ndm Core::Authenticator: missing a user name. Nov 01 06:14:52ndm Core::Syslog: last message repeated 9 times. Nov 01 06:14:53ndm Core::Authenticator: no such user: "enable". Nov 01 06:14:54ndm Core::Authenticator: no such user: "enable". Nov 01 06:14:55ndm Core::Authenticator: no such user: "pnadmin". Nov 01 06:14:57ndm Core::Authenticator: no such user: "pnadmin". Nov 01 06:14:58ndm Core::Authenticator: access to "torrent" denied for user "root". Nov 01 06:14:59ndm Core::Authenticator: access to "torrent" denied for user "root". 2.11.A.6.0-0 Это от transmission лог, лог от Web выглядить иначе. 1 Quote Link to comment Share on other sites More sharing options...
0 Mamay Posted November 1, 2017 Author Share Posted November 1, 2017 @Le ecureuilтогда такой вопрос. Нельзя ли запилить, хотя бы в cli, возможность применять lockout-policy на http порты отличные от 80/443? А-ля: ip http port 80, 8020, 8080, 8090 ip http 80 security-level private ip http 8020, 8080, 8090 security-level public Quote Link to comment Share on other sites More sharing options...
0 Le ecureuil Posted November 1, 2017 Share Posted November 1, 2017 Только что, Mamay сказал: @Le ecureuilтогда такой вопрос. Нельзя ли запилить, хотя бы в cli, возможность применять lockout-policy на http порты отличные от 80/443? А-ля: ip http port 80, 8020, 8080, 8090 ip http 80 security-level private ip http 8020, 8080, 8090 security-level public Я вам лично советую для transmission выделить отдельный поддомен KeenDNS, и сделать proxy. А снаружи доступ к transmission закрыть. В итоге одним махом сразу несколько зайцев, а отдуваться за ботов будет nginx. 2 Quote Link to comment Share on other sites More sharing options...
0 Mamay Posted November 1, 2017 Author Share Posted November 1, 2017 Спасибо. Я вас услышал. Топ можно закрывать. Quote Link to comment Share on other sites More sharing options...
Question
Mamay
Giga 2 - 2.11.A.4.0-2
ip https lockout-policy 4 60 1 - насколько я понимаю некорректно и работает лишь вариант без security ip http lockout-policy 4 60 1?
Есть ли шансы на появление lockout на https?
Link to comment
Share on other sites
24 answers to this question
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.