Hello, I've taken the hosts.deny file a bit further and wrote a hosts.trashcan and a hosts.dnat.
The hosts.trashcan uses the time patch, it will reject any ip/netmask from start_time to end_time on days. The hosts.dnat file will setup a dnat rule, it's format is Sport ip dport protocol Ed
