Thanks...the links you provided look very interesting! Oh, and I knew I should have kept my big mouth closed :)
On 7/18/05, Holger Bauer <[EMAIL PROTECTED]> wrote: > I guess it doesn't make sense to have a small solution that will be replaced > later. Actually there are some projects that might do the job better: > http://www.snortsam.net/ > http://sourceforge.net/projects/packetfence/ > > Give it some time and you'll see something like that in pfsense or at least > as an installable package :-) > > Holger > > -----Ursprüngliche Nachricht----- > Von: Jason Landry [mailto:[EMAIL PROTECTED] > Gesendet: Montag, 18. Juli 2005 07:08 > An: pfsense > Betreff: [pfSense Support] Intrusion Prevention > > > I know that intrusion prevention is on the radar, but what are the > chances of a relatively simple version to start? > > My thought was something along these lines: > > If W connections are attempted through X ports within Y minutes, block > the source /24 subnet for Z minutes. > > Any connection attempt that has an incoming rule defined that allows > the connection would not count against the number of attempts. > > I have absolutely no ability to program this stuff (I'm a SQL guy), > and I have no idea of how difficult it would be, but I thought I'd > offer the suggestion. > > Thanks for all your hard work to date! > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > > ____________ > Virus checked by G DATA AntiVirusKit > > --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]