Comment on Am I doing this (networking) safely?
non_burglar@lemmy.world 20 hours agoDidn’t you say you have whitelist of allowed ips? Why don’t you just drop any other inbound traffic?
Comment on Am I doing this (networking) safely?
non_burglar@lemmy.world 20 hours agoDidn’t you say you have whitelist of allowed ips? Why don’t you just drop any other inbound traffic?
redlemace@lemmy.world 20 hours ago
Not exactly.
So all IP’s are allowed to begin with, but some (“my” IP’s like at home, my office etc) are on a whitelist ahead of everything else. They can’t become blacklisted to avoid myself becoming locked out. Then it’s the drop all on the blacklisted, followed by portscan detection. Only after that the ‘normal’ rules (allow https, smtp etc) begin.