From owner-freebsd-questions@FreeBSD.ORG Sat Nov 29 20:22:51 2008 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id B8FB41065672 for ; Sat, 29 Nov 2008 20:22:51 +0000 (UTC) (envelope-from anthony.rasat@gmail.com) Received: from yx-out-2324.google.com (yx-out-2324.google.com [74.125.44.28]) by mx1.freebsd.org (Postfix) with ESMTP id 745058FC0C for ; Sat, 29 Nov 2008 20:22:51 +0000 (UTC) (envelope-from anthony.rasat@gmail.com) Received: by yx-out-2324.google.com with SMTP id 8so742580yxb.13 for ; Sat, 29 Nov 2008 12:22:50 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:x-rim-org-msg-ref-id :return-receipt-to:message-id:reply-to:x-priority:sensitivity :importance:to:subject:from:date:content-type:mime-version; bh=GMBMjx0VUPANj8E0B+5WXf8K+jjH4wwA0g8t4COscO8=; b=pmjoJf/Ao2L4mX5qYjrFHFGGdNqfGr+wYLaKjWHwkK52E47RQ0C2xNV2XHa8h5FriJ X8wfJvaF1748WOpAdLmV4eY0VfBQeJGJruOApA14KCm9ZuDPqTxNgT94kFf6IF6wXovq U2z8ivEmD03LwqiZK/fkS1uD7Lrm5sa85HpN4= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=x-rim-org-msg-ref-id:return-receipt-to:message-id:reply-to :x-priority:sensitivity:importance:to:subject:from:date:content-type :mime-version; b=BonMajw+fvhOq2zTJAesZJC5TD18mpQd206hwYj6RMysn17gv7dclGgyxkENHnxLZZ cCn70xI9u3Cc8hUbxWGmpLpzMHo6jkRcHQbTxlMpQVPcBW47xxTfScuHDwcDLkPWj4/J 3rIfHNM7tr2/vbRaptQwzEIIBk3kGfAKIkwP8= Received: by 10.64.151.10 with SMTP id y10mr9983903qbd.95.1227990170569; Sat, 29 Nov 2008 12:22:50 -0800 (PST) Received: from bda011.bisx.prodap.on.blackberry (bda011.bis.ap.blackberry.com [216.9.247.139]) by mx.google.com with ESMTPS id p6sm5478067qbp.17.2008.11.29.12.22.49 (version=SSLv3 cipher=RC4-MD5); Sat, 29 Nov 2008 12:22:49 -0800 (PST) X-rim-org-msg-ref-id: 1370644425 Message-ID: <1370644425-1227990164-cardhu_decombobulator_blackberry.rim.net-1270898776-@bxe1001.bisx.prodap.on.blackberry> X-Priority: Normal Sensitivity: Normal Importance: Normal To: freebsd-questions@freebsd.org From: "Anthony M. Rasat" Date: Sat, 29 Nov 2008 20:22:08 +0000 Content-Type: text/plain MIME-Version: 1.0 Subject: Re: Temporarily blocking ports X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: anthony.rasat@gmail.com List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 29 Nov 2008 20:22:51 -0000 Jos Chrispijn wrote: >Can someone hint me how I can >block ports for let's say 30 minutes if >someone repeatedly tries to do a SSH >login? >I use ipfw as firewall... I think I saw ssh-ipfw section in jail.conf file of fail2ban application (http://www.fail2ban.org). I believe fail2ban might be the one you looking for. But I'm sorry I'm using fail2ban in Linux (which is using netfilter's iptables firewall, not IPFW). I'm not sure it will work on FreeBSD and I don't have FreeBSD server lying around outside my VMware environment here, so I wish you good luck trying. -- Regards, Anthony M. Rasat Manager - Technical, Network and Support Division PT. Jawa Pos National Network Graha Pena Jawa Pos Group Building, 5th floor Jln. Raya Kebayoran Lama 12, Jakarta Barat 12210 Indonesia.- Phone 02132185562 Phone 081574217035 Fax 02153651465 Web http://www.jpnn.com