On 13/11/10 6:01 AM, Nathan Eisenberg wrote:
I have a customer who wants to be able to automate IP blackholing on their
PFSense firewall from their custom IDS. In essence, the application wants to
go something like
'I'm being abused by this IP 198.51.100.20'
'POST HTTPS://GATEWAY/pfapi.php?alias=blocklist&ip=198.51.100.20&comment='
'POST HTTPS://GATEWAY/pfapi.php?action=apply'
There was a post about this some time ago, and the answer at the time was
'there's no such functionality'. Is there anything new on this front?
Nathan Eisenberg
Search this list and forums for previous discussions about fail2ban. This is
exactly the tool you are thinking of and there was some discussion about why it
would or would not work with pfSense. I agree it would be useful, especially if
it worked in a HA setup.
Ari
--
-------------------------->
Aristedes Maniatis
ish
http://www.ish.com.au
Level 1, 30 Wilson Street Newtown 2042 Australia
phone +61 2 9550 5001 fax +61 2 9550 4001
GPG fingerprint CBFB 84B4 738D 4E87 5E5C 5EFA EF6A 7D2E 3E49 102A
---------------------------------------------------------------------
To unsubscribe, e-mail: discussion-unsubscr...@pfsense.com
For additional commands, e-mail: discussion-h...@pfsense.com
Commercial support available - https://portal.pfsense.org
