Hey folks, I'm trying to figure out how to code rules in puppetlabs-firewall to mitigate Brew Force Attacks (BFA) and can't figure out how to code it.
Here is the pattern I'm trying to code: $ sudo iptables -A INPUT -i eth0 -p tcp --dport 22 -m state --state NEW -m recent --set --name SSH $ sudo iptables -A INPUT -i eth0 -p tcp --dport 22 -m state --state NEW -m recent --update --seconds 60 --hitcount 8 --rttl --name SSH -j DROP Looking at the source code for the type and provider would lead me to belive that all the pieces are their but who to assemble them I haven't been able to guess at. Thanks in advance. -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/puppet-users/CAArvnv15UB7JPDdVQVHZyRP%2BW30H1CHahD-KaV%3DSm5w0i7CN-Q%40mail.gmail.com. For more options, visit https://groups.google.com/d/optout.
