Brute-force attack protection

Brute-force attack protection blocks password-guessing attacks for RDP and SMB services. A brute-force attack is a method of discovering a targeted password by systematically trying all possible combinations of letters, numbers, and symbols.

•Enable Brute-force attack protection—ESET Server Security inspects network traffic content and blocks the attempts of password-guessing attacks.

•Rules—Create, edit and view rules for incoming and outgoing network connections.

•Limit incoming RDP connections—Enables you to restrict RDP connections to the networks listed in the Trusted zone IP set (recommended). Go to Network access protection > IP sets and edit Trusted zone IP set to include networks, IP addresses, or IP address ranges from which you specifically allow RDP connections to the server. Alternatively, you can create a new IDS rule under Network attack protection. Click Edit next to IDS rules > Add > select Limited RDP connection from the Detection drop-down menu.

•Exclusions—List of excluded detections defined by an IP address or application path. You can create and edit exclusions in ESET PROTECT Web Console.