sshguard pf
Michael Ross
gmx at ross.cx
Tue Nov 4 22:11:55 UTC 2014
On Tue, 04 Nov 2014 21:41:44 +0100, Lowell Gilbert
<freebsd-questions-local at be-well.ilk.org> wrote:
> Charlie Root <root at ymer.thorshammare.org> writes:
>
>> Do "bruteblock" require me to run ipfw2 as my firewall ?
>
> Yes. That's why I mentioned that there are several other options, I just
> don't know them myself.
>
> Last I checked, bruteblock doesn't support IPv6 either, so one of these
> days I may have to check into the choices again.
For the record, I use fail2ban,
and setting it up was painless, and it will support pf.
Quick-How-To:
1. Install fail2ban
2. Create file /usr/local/etc/fail2ban/jail.local
[sshd]
enabled = true
action = pf
port = ssh
logpath = %(sshd_log)s
[sshd-ddos]
enabled = true
action = pf
port = ssh
logpath = %(sshd_log)s
3. Modify /usr/local/etc/fail2ban/action.d/pf.conf
You need the correct path to pfctl in "actionban" and "actionunban"
and the correct tablename in the [Init] section at the end.
4. service fail2ban onestart
> _______________________________________________
> freebsd-questions at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to
> "freebsd-questions-unsubscribe at freebsd.org"
More information about the freebsd-questions
mailing list