Date: Wed, 30 Sep 2015 11:05:28 +0200 From: Alexandre <axelbsd@ymail.com> To: Nino J <nino80@gmail.com> Cc: "freebsd-questions@freebsd.org" <freebsd-questions@freebsd.org> Subject: RE: SSHguard & IPFW Message-ID: <DUB118-W298F9A7259950319B1BFD6B44D0@phx.gbl> In-Reply-To: <CALf6cgZYJxQQA5Dxtu2QKzRC7FebeXte7NNRmGwOa5ma7We=tQ@mail.gmail.com> References: <DUB118-W2564316B09E855F03F7D11B44E0@phx.gbl>, <1443531575.1236.13.camel@michaeleichorn.com>, <DUB118-W32603EFCC32F67913C02BEB44E0@phx.gbl>, <CALf6cgZYJxQQA5Dxtu2QKzRC7FebeXte7NNRmGwOa5ma7We=tQ@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Thank you Nino for your reply.=0A= Effectively today I can see a line with multiple IP addresses on the same r= ule number. =0A= =0A= About the next version of SSHGuard=2C you mean SSHGuard (for IPFW) will wor= ks the same way than SSHGuard for PF?=0A= =0A= Regards.=0A= Alexandre=0A= =0A= ----------------------------------------=0A= > From: nino80@gmail.com=0A= > Date: Wed=2C 30 Sep 2015 09:41:55 +0200=0A= > Subject: Re: SSHguard & IPFW=0A= > To: axelbsd@ymail.com=0A= > CC: freebsd-questions@freebsd.org=0A= >=0A= > On Tue=2C Sep 29=2C 2015 at 4:24 PM=2C Alexandre <axelbsd@ymail.com> wrot= e:=0A= >=0A= >>=0A= >>>> About the blocking rules reservation in IPFW (from rule 55000 to=0A= >>>> 55050)=2C anyone experienced yet full use of these rules?=0A= >>>> By default=2C fifteen addresses can be blocked together. But how SSHGU= ARD=0A= >>>> works in this case for the newest one (51th)?=0A= >>>>=0A= >>>> Thank you in advance for your clarifications.=0A= >>>> Alexandre=0A= >>=0A= >=0A= > To answer your second question=2C IPFW has no problem using the same rule= =0A= > number for multiple rules. Thus sshguard is not limited to 50 addresses.= =0A= >=0A= > Also=2C next version of sshguard won't use IPFW rules=2C but rather an IP= FW=0A= > table to insert IP addresses to be blocked. Thus it will only need a sing= le=0A= > deny rule.=0A= >=0A= > I'm currently using development version of sshguard which uses IPFW table= =0A= > and it works fine for me.=0A= >=0A= > Regards=2C=0A= > --=0A= > Nino=0A= > _______________________________________________=0A= > freebsd-questions@freebsd.org mailing list=0A= > https://lists.freebsd.org/mailman/listinfo/freebsd-questions=0A= > To unsubscribe=2C send any mail to "freebsd-questions-unsubscribe@freebsd= .org"=0A= =
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?DUB118-W298F9A7259950319B1BFD6B44D0>