Gotcha, vlan setup sounds like the best possible way to do it, I don’t trust my security skills at all, 22 with fail2ban is about as far as I trust myself!
Most of these things are pretty secure out of the box.
Even without fail2ban disabling root login and only allowing SSH key authentication makes those scripts just a waste of time for the attacker. That game is a low effort attempt to just get the low hanging fruit for botnets though.
Gotcha, vlan setup sounds like the best possible way to do it, I don’t trust my security skills at all, 22 with fail2ban is about as far as I trust myself!
The hammering 22 gets is astonishing though.
Most of these things are pretty secure out of the box.
Even without fail2ban disabling root login and only allowing SSH key authentication makes those scripts just a waste of time for the attacker. That game is a low effort attempt to just get the low hanging fruit for botnets though.