Le Jeu 28 sep 06 à 16:19:42 +0200, John Baldwin <[EMAIL PROTECTED]> écrivait :
> ports/security/bruteblock (there's another one for pf, this one is for ipfw) No need for an external tool with pf. Just add this kind of rule: table <ssh-bruteforce> persist block in quick from <ssh-bruteforce> pass in quick on $ext_if inet proto tcp from any to ($ext_if) \ port 22 flags S/SA keep state \ ( max-src-conn-rate 2/10, overload <ssh-bruteforce> flush global) [Tip found at <http://beta.gcu.info/> (a french site)] -- Th. Thomas. _______________________________________________ freebsd-chat@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-chat To unsubscribe, send any mail to "[EMAIL PROTECTED]"
