How to setup IPFW working with blacklistd
Carmel NY
carmel_ny at outlook.com
Mon Nov 6 11:35:42 UTC 2017
On Mon, 6 Nov 2017 09:38:40 +0100, Cos Chan stated:
>I would run IPFW with blacklistd, my FreeBSD is 11.1-RELEASE-p1.
>
>my blacklistd is working fine to get sshd failed login attempts.
>The out put:
>
>$ sudo blacklistctl dump -b
> address/ma:port id nfail last access
> 1.1.1.1/32:22 3/-1 2017/11/05 01:05:34
> 2.2.2.2/32:22 3/-1 2017/11/05 13:22:53
>
>but I can't find information how to use the blacklistd database in IPFW
>from IPFW manpage
>
>would anybody explain that to me?
I have no personal knowledge of "blacklistd"; however, it seems that there
should be a way of using "blacklistctl dump" in conjunction with "sed" or
perhaps "awk" to create a list that could then be fed to "ipfw".
If you could send me the output of a "blacklistctl dump -bn", I could take a
look at it for you.
--
Carmel
More information about the freebsd-questions
mailing list