Stopping port scanning
Does anyone know of a semi-elegant solution for this? My previous scheme of using blacklists in the firewall is running out of gas.
Thanks in advance…
Your current setup using adaptive firewalls is the best bet. I've found articles mentioning setting up a honeypot, which doesn't stop the scanning but certainly puts the joke back on the scanner. A colleague also mentioned using a bastion host, though it might be overkill for your purposes and may not do much more than a solid firewall and robust sever security.