Hi all: We run an ssh server (sles 10 sp2) behing our BM
3.9 server. I proxy port 22 traffic to and from this ssh
server. I am seeing a lot of low-level attacks against the
ssh server and have implemented public key authentication as
the ONLY method of access. However I still want to block
all this traffic from entering thru the firewall in the
first place.

To complicate matters, I (and others who use ssh tunneling)
have cable access from our homes and dynamic ip addresses.
I have a domain thru dyndns.org which gets updated whenever
my ip changes.

So, how can I setup a filter to basically limit all ssh
traffic to only my domain (xxx.dyndns.org) ???