SFTP login attempts
Posted: Thu Feb 06, 2020 7:18 am
I'm using a Asustor NAS for a couple of years already now.
I'm using AiMaster on my phone to controll and monitor my NAS and having notifications activated here.
But I'm getting really tired of SFTP login failures notifications, and sometimes there're a lot of them.
I was already afraid of security risks, since the attemps come from all over the world (mostly asia). So I guess it are just some automated bots who scan for open ports or so.
To minimise risk, I've changed the standerd login credentials, not using the the standard admin login, and think I'm using a fairly strong password. I also activated "auto black list" and letting IP's getting blocked for a specific period after a few login attemps.
But I'm still getting annoyed about the ntifications it gives. I could turn notifications off ofcouse, but I would also like being informed if something's wrong with the NAS.
So I'm looking for a sollution of getting rid of these notifications.
The first option would be changing port 2222 I guess. But there're also apps communicating via this port. So I guess this can give some connection problems unless I configure all the apps to same port I guess? Not sure how it will work out yet...
Also searched the internet a bit, and 2 alternatives I've found are configurating "port triggering" in my (Asus) router, or looking to setup "port knocking". But not sure how to get "port knocking" running yet at the moment.
Annyone who has some practical advise for me in this one?
I'm using AiMaster on my phone to controll and monitor my NAS and having notifications activated here.
But I'm getting really tired of SFTP login failures notifications, and sometimes there're a lot of them.
I was already afraid of security risks, since the attemps come from all over the world (mostly asia). So I guess it are just some automated bots who scan for open ports or so.
To minimise risk, I've changed the standerd login credentials, not using the the standard admin login, and think I'm using a fairly strong password. I also activated "auto black list" and letting IP's getting blocked for a specific period after a few login attemps.
But I'm still getting annoyed about the ntifications it gives. I could turn notifications off ofcouse, but I would also like being informed if something's wrong with the NAS.
So I'm looking for a sollution of getting rid of these notifications.
The first option would be changing port 2222 I guess. But there're also apps communicating via this port. So I guess this can give some connection problems unless I configure all the apps to same port I guess? Not sure how it will work out yet...
Also searched the internet a bit, and 2 alternatives I've found are configurating "port triggering" in my (Asus) router, or looking to setup "port knocking". But not sure how to get "port knocking" running yet at the moment.
Annyone who has some practical advise for me in this one?