Party
Thierry Thomas
thierry at FreeBSD.org
Thu Sep 28 08:16:11 PDT 2006
Le Jeu 28 sep 06 à 16:19:42 +0200, John Baldwin <jhb at freebsd.org>
écrivait :
> ports/security/bruteblock (there's another one for pf, this one is for ipfw)
No need for an external tool with pf. Just add this kind of rule:
table <ssh-bruteforce> persist
block in quick from <ssh-bruteforce>
pass in quick on $ext_if inet proto tcp from any to ($ext_if) \
port 22 flags S/SA keep state \
( max-src-conn-rate 2/10, overload <ssh-bruteforce> flush global)
[Tip found at <http://beta.gcu.info/> (a french site)]
--
Th. Thomas.
More information about the freebsd-chat
mailing list