* aeonsystems.com wrote: > Hi, > > I saw this thread from 2003 > > http://marc.info/?l=openbsd-pf&m=104540589312892&w=2 > > This is a very nice idea which I'd like to implement in some form on my > network(s). > > One question though... > Is there an easy and secure way to update a <banned> table on the firewall > box (from the webserver), if my webserver and firewall are on two different > OpenBSD machines on a LAN?
yes. use the tabled daemon and associated client program which is provided in the tabled package (or sysutils/tabled port). It does exactly what you want, in a secure manner, over IPv4 and IPv6. > > Thanks in advance for any info! > > Sarah - Marc > > P.S.: Does anyone know of any other ideas or neat tricks related to Dynamic > Filtering based on logfiles? > I'm having too much fun here. :-)
