Correct me if I'm wrong, but one issue with using RBL data in
iptables is that you can't get an indication of rejections right?
With my RBL, I send an error message to any remote system they've
been blocked, with instructions on how to petition to be whitelisted.
With f2b, you don't get any indication anything's been blocked,
right? This is one reason why I like tcpwrappers. I can look at my
logs and see a particular IP was banned at a time when, say, I'm
expecting a remote system to send me an e-mail or something.
Is there a way to log iptable rejections without using too much resources?
At 05:59 AM 8/28/2019, Nick Howitt wrote:
On 28/08/2019 11:21, Dominic Raferd wrote:
On Wed, 28 Aug 2019 at 08:35, Nick Howitt <[email protected]
<mailto:[email protected]>> wrote:
One thing I'd like to get hold of is a reliable list of all
dynamic IP's
as used by some of the email RBL's.
I use fqrdns
https://github.com/stevejenkins/hardwarefreak.com-fqrdns.pcre in
postfix and although it seems to be abandonware I find it very
reliable and effective (all three files)
Hmm. I think I agree with abandonware. As ISP's come and go and
merge I would have expected the files to change. I know my ISP is
not listed but could be covered by one of the generic rules. I now
have a static IP with them so I can't test.
_______________________________________________
Fail2ban-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/fail2ban-users
_______________________________________________
Fail2ban-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/fail2ban-users
