Ok, so first question... Is the working title too long? :)
I referenced this article for the initial idea:
https://www.linode.com/community/questions/11143/top-tip-firewalld-and-ip...
My basic outline:
- Installing and setting up fail2ban, specifically for sshd
- Methods to monitor the fail2ban log or get the sshd jail status from
fail2ban-client
- How to block IPs by country .
- Will include:
-- The script to largely automate the process
-- A SystemD service file and timerl so updates to network addresses are
picked up on a regular basis. (monthly?)
If I work on this much more I should probably submit it as a package :)
Next steps?
Thanks,
Richard