Hi, Whenever someone tries a portscan or http server vulnerability scan on my system, I have to manually add their ip in my /etc/ipfw.conf file such as: add 100 deny all from xx.xxx.xxx.xxx to any
Is there a way, without enabling blackhole, to dynamically add ips to my blacklist after a certain packet/sec limit or some other way? Thanks, Nicolas. -- FreeBSD 7.0-CURRENT #0: Sat Oct 1 11:51:38 EDT 2005 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/CLK01A PGP? : http://www.clkroot.net/security/nb_root.asc
pgpFqRrcbBIvJ.pgp
Description: PGP signature
