I'm in the US. We have a SRX100 in the UK, that is getting beaten up with SSH login attempts. It's used as a IPSec tunnel back to our DC. Since these are older and no longer supported, all the while we're trying to get it funded for replacement, I need a method that will deny these attempts from causing performance issues and syslogs from rolling over every hour or two. I'm relatively new with these, so my initial attempt was using the set system login retry-options commands. Lots of lockouts, but the hits keep on coming.
Talked to someone about firewall filters, but have not written one that is successful as of yet. Info I've found on the Juniper KB site is written more for still supported devices.
Anyone have these in place still, and have configured them to ward off the SSH deluge? Appreciate the help.