[ Charset ISO-8859-1 unsupported, converting... ] > I have tried to search around a bit before asking this newb question but > here goes: > > I have a ruleset that I would like to remain unchanged /etc/opt/ipf/ipf.conf > > I would like to add new rules to it on the fly such as > > block in quick from <bad web hacker ip>/32 to any > > from the command line. The reason I do not want to add to the ipf.conf > file is so that every 2 or so days a cron will restart the ipfboot and > only load my original ipf.conf file. This will: > a) not may my ruleset get so big (lot's of bad web hacker ips!) > b) allow me to block the original hacker for long enough to thwart the attack
echo 'block in quick from blah to blah' | ipf -f - Put "@0 " before block if you want it at the very top. Darren
