TSA and TZ600 can it block dictionary attacks on a Terminal Sever?
I am researching adding the Terminal Server Agent (TSA) on a Terminal Server that is behind out TZ600.
The open terminal server port is hit by dictionary attacks daily. I am new to firewall theory so my beginner question is will adding the TSA to the terminal server lockout the random IP sources the hacker is using for the dictionary attack?
We have already implemented the GEO block for any source IP outside of the USA so the attacker switched to stateside IP's and continues to attempt to access the terminal server.