In article <[EMAIL PROTECTED]>, Aaron Martinez wrote: > > For instance, i don't run telnetd anywhere and so if a connection to > port 23 is made, i would like to add the connecting machine's IP to a > 'bad_guys' table on the fly so subsequent connects will be dropped. For > the life of me i can't find where i read this.. is it possible or was i > imagining it?
Nah, read the pf faq, or the pf/pf.conf manpage. Just set the connections per time to a really low value for a given time (like 1/60) on the rule/port which you are dealing with, which should pretty much give you what you're looking for. -- [100~Plax]sb16i0A2172656B63616820636420726568746F6E61207473754A[dZ1!=b]salax