For a while now I've been fighting off what many of us need to fight off: bruteforce attacks to various services, in this case ssh, imap and smtp. I have tried tools like fail2ban and similar, but only one (which its name escapes me) actually worked, but running it was cumbersome (runs properly only via FIFO's and backgrounding it with the shell jobserver). Then, while looking for an alternative, I found iptables' recent module. I have it set for 3 attempts on NEW connections in 1 minute to block for 1 hour, which works fine (I have my IP whitelisted).
Here comes the issue... I've been getting hit so much that now I've seen dmesg print out that the table is full and its dumping old entries, repeatedly sometimes. I am wondering if there is a better solution that works as smoothly as iptables' recent module? I'm open to suggestions, these automated bots are becoming a nuisance.