Currently Being ModeratedAug 17, 2013 5:16 AM (in response to iphone4_Ie)
If you look at your server logs, you'll likely notice many failed login attempts over the open VPN ports. Don't use simple passwords. Use a complicated VPN shared secret. Don't give root VPN access.
For additional security, you can turn on Server's "adaptive firewall" (afctl). This will watch for failed login attempts, and temporarily ban the incoming IP address that the attack originates from. This will make it really hard for people to run dictionary attacks against your server all day long.
Currently Being ModeratedAug 17, 2013 6:20 AM (in response to cpragman)
hi thanks for the info, I have already the firewall enabled in system preferences.. is this the same thing?
Currently Being ModeratedAug 17, 2013 7:14 AM (in response to iphone4_Ie)
i ran through those processes , and for the last one got file not found
/System/Library/LaunchDaemons/com.apple.pfctl: file does not exist or is not readable or is not a regular file
is there a way to verify that the adaptive firewall is running?