I see you are fan of newbie ^^ so i ask kindly for a explanation of "asusip=192.168.178.2" line.
I suppose to use my internal ip of router there ? .1.1 ?
right, its just your router ip (lan)
Code:
This script is useful on any interface as is ?
As you can see, all rules are just valid for the INPUT chain.
As usual, you can use any other chain and rule as needed.
Best is to configure your firewall through webif
Code:
Because like all of you out there my log is full of ssh attempts ...
I use Asus on gateway mode so wan is exposed to outside
Well, as avberk mentioned you can avoid most of ssh attacks by using an other port as 22.
Further, I block any "bad" ip with my /opt/etc/hosts.deny file at startup.
For instance, the complete 200.0.0.0/8 is blocked.
Have fun