I have a ip that is repeating every min in my "user authentication daemon log" they are trying various username, I want to stop that ip all together, I have made a rule in the past in the firewall to drop all packets coming from a group that I created and added this one into it, but they continue to try. So I found the box "drop packets from blocked hosts" under Authentication Servers /Advanced. I checked it and it still continues, so my question is where do you type in the blocked hosts?
version 9.105-9. thanks for any help you may over to stop this ip guessing emails from caller="smtp"
This thread was automatically locked due to age.
