i am getting lots of hacking attempts on my router which maps one public ip to privates via nat..
they are tls packts looking to hack a openvpn server. unfortunately they are on ports that i need to leave open for devices on my private network that uses these like 53 (dns) 123 (ntp).. Anyone know of a way in iptables firewall to block these.. i see a lot of hacking attempts in my router log.
I dont think i can be hacked this way as my openvpn requires certs and not just user name passwords, but i try to block any attempts like this. I have given up just adding the ips to my blacklist as it is a never ending task.