Im trying to keep my routers HTTPS port and SSH port from being brute forced. Say like only allow 3 failed connections a minute or something like that. I entered in these IPTable rules but the dont seem to work? I have tried on the WAN side, still no go....
iptables -N rate_limit
iptables -F rate_limit
iptables -A rate_limit -p tcp --dport xx -m limit --limit 3/min --limit-burst 3 -j ACCEPT
iptables -A rate_limit -p tcp --dport xxx -m limit --limit 3/min --limit-burst 3 -j ACCEPT
iptables -A rate_limit -p tcp -j REJECT --reject-with tcp-reset
iptables -A rate_limit -j DROP

iptables -I INPUT -p tcp --dport xx -m state --state NEW -j rate_limit
iptables -I INPUT -p tcp --dport xxx -m state --state NEW -j rate_limit
Anyone notice anything that would cause these to fail?