On Fri, Mar 29, 2013 at 3:39 PM, Jason Pyeron <[email protected]> wrote: > > That would be verry disruptive, it says: "Resetting the state tables will > remove > all entries from the corresponding tables. This means that all open > connections > will be broken and will have to be re-established." We have thousands of > active > connections for services that should not be interrupted. >
I definitely wouldn't flush the entire state table. You can just kill off states to/from the IP in question. > Sorry, I should have been more clear. I am looking for a way to, in a single > execution, reproduce the steps below. > > Ex: ssh root@firewall '/usr/local/bin/add_ip_to_block_list DOS_DDOS x.y.z.q' > or > https://firewall/add_ip_to_block_list.php?alias=DOS_DDOS&address=x.y.z.q > > I think, after reading > http://www.linuxnet.ch/pfsense-important-cli-commands/, I > am going to have to do this by making a custom php script. > This is probably your best bet today, it wouldn't take a lot to put that together to meet your requirement. We'll hopefully have an API at some point in the future, but none exists today. _______________________________________________ List mailing list [email protected] http://lists.pfsense.org/mailman/listinfo/list
