Module Name: src
Committed By: sevan
Date: Sun Sep 22 19:51:18 UTC 2019
Modified Files:
src/share/examples/npf: soho_gw-npf.conf
Log Message:
Add support for blacklistd
To generate a diff of this commit:
cvs rdiff -u -r1.18 -r1.19 src/share/examples/npf/soho_gw-npf.conf
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
Modified files:
Index: src/share/examples/npf/soho_gw-npf.conf
diff -u src/share/examples/npf/soho_gw-npf.conf:1.18 src/share/examples/npf/soho_gw-npf.conf:1.19
--- src/share/examples/npf/soho_gw-npf.conf:1.18 Sun Sep 22 19:30:15 2019
+++ src/share/examples/npf/soho_gw-npf.conf Sun Sep 22 19:51:18 2019
@@ -1,4 +1,4 @@
-# $NetBSD: soho_gw-npf.conf,v 1.18 2019/09/22 19:30:15 sevan Exp $
+# $NetBSD: soho_gw-npf.conf,v 1.19 2019/09/22 19:51:18 sevan Exp $
#
# SOHO border
#
@@ -42,6 +42,9 @@ group "external" on $ext_if {
# Block inbound traffic from those on the block table
block in from <block>
+ # Placeholder for blacklistd (configuration separate) to add blocked hosts
+ ruleset "blacklistd"
+
# Allow inbound SSH and log all connection attempts
pass stateful in family inet4 proto tcp to $ext_v4 port ssh \
apply "log"
