Re: psync for sshguard table sync on several hosts

Use BGP to distribute list of IP addresses. Like it is done at http://bgp-spamd.net/ //mxb > On 11 okt. 2016, at 19:59, Zeus Panchenko wrote: > > Signed PGP part > hi, > > please advise > > I think of pfsync-ing sshguard table content among several hosts to get > one

psync for sshguard table sync on several hosts

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 hi, please advise I think of pfsync-ing sshguard table content among several hosts to get one big table on each host, since IP blocked on one host I want to be blocked on all others automatically (all hosts are terminated in one VPN) ... am I correc

Re: Slow NAT on 10.3-RELEASE

On 11 Oct 2016, at 10:34, Kamil Choudhury wrote: I've seen some mention of checksum issues on NAT limiting performance, but that seems to have been fixed as of 10.2 in an errata. Have I stumbled upon an actual problem, or have I misconfigured something? It’s worth trying the workaround (i.e. d

Slow NAT on 10.3-RELEASE

Hey freebsd-pf: I'm on FreeBSD 10.3-RELEASE, and attempting to route all traffic from jail1 to the internet out of router.vtnet0 using PF. It *works*, but not well: boundary's NAT tops out at a blistering 20KBps on a 100Mbps internet connection. Here's the topology I'm working with: client