Date: Mon, 06 Nov 2017 15:42:03 +0100 From: "Michael Ross" <gmx@ross.cx> To: freebsd-questions <freebsd-questions@freebsd.org>, "Cos Chan" <rosettas@gmail.com> Subject: Re: How to setup IPFW working with blacklistd Message-ID: <op.y9adsis8g7njmm@workstation> In-Reply-To: <CAKV%2BxLBoxGRXHQZa7kcgnFcw9Q9%2Bf2j9G4LF4ZCb8mwgqGLi=g@mail.gmail.com> References: <CAKV%2BxLBoxGRXHQZa7kcgnFcw9Q9%2Bf2j9G4LF4ZCb8mwgqGLi=g@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Am .11.2017, 09:38 Uhr, schrieb Cos Chan <rosettas@gmail.com>: > Hi All > > I would run IPFW with blacklistd, my FreeBSD is 11.1-RELEASE-p1. > > my blacklistd is working fine to get sshd failed login attempts. > The out put: > > $ sudo blacklistctl dump -b > address/ma:port id nfail last access > 1.1.1.1/32:22 3/-1 2017/11/05 01:05:34 > 2.2.2.2/32:22 3/-1 2017/11/05 13:22:53 > > but I can't find information how to use the blacklistd database in IPFW > from IPFW manpage > > would anybody explain that to me? > Have a look at this: https://people.freebsd.org/~lidl/blacklistd.html blacklistd_enable="YES" blacklistd_flags="-r" sshd_flags="-o UseBlacklist=yes" Never tried it myself. Regards, Michael
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?op.y9adsis8g7njmm>