RU RU

IT support for startups and developers

All Posts

080 | Classic Brute-Force Protection: Fail2ban

August 12, 2025

#fail2ban #security #server #iptables #nftables #protection #brute-force #SSH #logs

Introduction: Server Security — The First Line of Defense

Once you deploy any server or virtual machine, one of the first and most important tasks is ensuring its security. Even if your server doesn’t contain critical data, it can still be targeted by automated bots constantly scanning the internet for vulnerabilities. The most common type of attack against any server is brute-force password guessing, typically aimed at SSH access, FTP services, or web control panels.

Case Study: Configuring Port Knocking on MikroTik for Enhanced Security

July 16, 2025

#MikroTik #RouterOS #SSH #Port Knocking #remote access #security #firewall #protection #case study

In a world where cyberattacks are becoming increasingly sophisticated, protecting remote access to servers and network equipment is of paramount importance. Simply opening ports for SSH, RDP, or web interfaces makes them targets for constant scanning and brute-force attacks.

Today, we’ll explore a powerful yet lesser-known technique that significantly improves the security of your MikroTik (and not only): Port Knocking. It’s not just about “closing ports,” but a smart system that makes your services invisible to most scanners and bots.