I am getting repeated login attempts from this IP address, 45.135.232.165, apparently a known Russian abusive host. I want to block all traffic on all ports from the entire subnet 45.135.232.*, so I did
ufw deny from 45.135.232.0/24
ufw status shows the rule as
To Action From
-- ------ ----
Anywhere DENY 45.135.232.0/24
However, lastb still reports daily login attempts from the above mentioned address. What am I missing?