Date: Tue, 2 Nov 2010 10:28:11 -0700 From: Rob Farmer <rfarmer@predatorlabs.net> To: "Justin V." <vic@yeaguy.com> Cc: freebsd-questions@freebsd.org Subject: Re: SSHgaurd and PF Message-ID: <AANLkTi=e5b0OTqbxky_bgYnH3gNeRyKBeYu1McypRmGV@mail.gmail.com> In-Reply-To: <alpine.BSF.2.00.1011021001001.18489@yeaguy.com> References: <alpine.BSF.2.00.1011020930390.17971@yeaguy.com> <AANLkTikq%2BgYWD=SEY4nKboV7QUTk9DQdj2bkJ_CRpoAv@mail.gmail.com> <alpine.BSF.2.00.1011021001001.18489@yeaguy.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, Nov 2, 2010 at 10:03, Justin V. <vic@yeaguy.com> wrote: > This is the guide I used: > > http://www.sshguard.net/docs/setup/firewall/pf/ > > I followed this section to block all brute attempts: Right, but did you do this part too? http://www.sshguard.net/docs/setup/getlogs/syslog/ The part you mentioned sets up the table and has pf drop the connection attempts, but you need to configure syslog to fill the table with IPs of attackers. -- Rob Farmer
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?AANLkTi=e5b0OTqbxky_bgYnH3gNeRyKBeYu1McypRmGV>