Guys...I was not the one that started this thread..
I just chimed in and asked for a tweak on the setup.
I have what I need for now :)
-JD
At 11:54 AM 06/28/2007, Daniel Ouellet wrote:
J.D. Bronson wrote:
At 08:56 AM 06/28/2007, Stuart Henderson wrote:
On 2007/06/28 08:46, J.D. Bronson wrote:
> Will NEW offenders be added to /etc/tables/scanners
> as they are discovered and therefore not just remain in kernel?
No, pf does not write to files.
How about cron(8) and pfctl(8) instead?
so if it wont write to a file...I presume it blocks
whats listed in /etc/tables/scanners permanently and then only
blocks NEW offenders via kernel memory?
(can someone clarify my understanding of that?
I would ideally like to stop attacks and then write the offenders in a file
so I dont loose these during a reboot...
what if I cron something like this:
pfctl -t scanners -T show >> /etc/tables/scanners
pfctl -f /etc/pf.conf
Would that work??
I was trying to help giving you an example that would work, as you
said it was working before and not anymore. But I guess you need to
go back and read the faq, and the man page on pf and cron. Looks
like you want others to do the work for you and giving you the
answer, or even more details is like doing the setup for you and you
will not remember or understand it properly to do it right the next
time around.
Sorry, I really was going to send you more but deleted my email. It
wouldn't be the right way to help you. Configuring a firewall is
important to make sure you protect yourself and your office, etc. Do
your homework first, then if you have question you sure can asked
and will be more then happy to help. Feeding you with a spoon is the
wrong thing to do here as firewall is to important for you not to
understand it fully. I sure don't want to be mean, but I think
that's the best way to help you.
I fell it wouldn't be helping you doing so. If you are not sure of
something, why not testing it and see. (;>
Best,
Daniel
