Skip to content

broerman/ssh_geo_ip_blocker

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
files
files
 
 
templates
templates
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
deploy.yaml
deploy.yaml
 
 
hosts
hosts
 
 

Repository files navigation

SSH Geo IP blocking by tcpwrapper

This playbook installs geoipupdate from maxmind and configures tcpwrapper to block SSH connects from allowed countries. You have to register to maxmind.com to be able to upgrade the geoip database. This playbook was tested on Debian/Ubuntu x86_64 and raspberry pi.

Preparations

register at https://www.maxmind.com/en/geolite2/signup

edit ./hosts file

ajust geoip_version and other vars in deploy.yaml

Run

Deploy to server1

ansible-playbook -i hosts deploy.yaml --limit server1
Check

Check if it works

# geoiplookup 8.8.8.8
GeoIP Country Edition: US, UnitedStates
Monitoring

Login to server1 and watch activities.

tail -f /var/log/auth.log /var/log/geo_check.log

About

SSH Geo IP blocking by tcpwrapper

Topics

ansible-playbook block ssh-bruteforce

Resources

Readme
Activity

Stars

2 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages