This is my first post, so don't hate on me too much. I did search the archive
for BGP before posting, so hopefully it hasn't been covered.
I am looking to point Fail2Ban at a centralized syslog server (I know I'd have
to get the desired logs here first), complain to the whois abuse contact (which
I'm working on for my single server setups) and then insert that IP address as
a BGP blackhole. I see how to add it as a local route blackhole, but I'm not
sure how to do the BGP part. I assume that I'd have to install a BGP daemon
locally or SSH into one (perhaps one I also use as a route reflector?) and
execute a command to insert a blackhole route.
Has anyone done this?
Can I do a second (or third) action in addition to that to remote into off-net
boxes and add it to their routes. I'd like to prefer to do it via routes as
routes has less load than a firewall.
-----
Mike Hammett
Intelligent Computing Solutions
http://www.ics-il.com
------------------------------------------------------------------------------
Download BIRT iHub F-Type - The Free Enterprise-Grade BIRT Server
from Actuate! Instantly Supercharge Your Business Reports and Dashboards
with Interactivity, Sharing, Native Excel Exports, App Integration & more
Get technology previously reserved for billion-dollar corporations, FREE
http://pubads.g.doubleclick.net/gampad/clk?id=157005751&iu=/4140/ostg.clktrk
_______________________________________________
Fail2ban-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/fail2ban-users
