On Mon, Jun 26, 2006 at 07:45:07PM -0700, nobiscuit wrote: > I gather it is possible to add IP addresses to a table using pfctl run > with a cron job based on what has been logged from pf. However, this > cron job would have to be run frequently to be any more effective than > the <banish> rule listed above. > > I've been through the documentaion and this mailing list. Is there > another way to add IP addresses to a table directly using a rule in > pf.conf? I can see the little bastards coming and I'd like to cut them > off as quickly as possible.
I'm not sure about the archives here, but this comes up every few months on [EMAIL PROTECTED] One way is to use a log tail program, which would use pfctl to add the address to the table. Another way would be to rdr in pf.conf to a simple daemon which would add the address. You'd have to do this yourself, and you'd want to be careful! -- Darrin Chandler | Phoenix BSD Users Group [EMAIL PROTECTED] | http://bsd.phoenix.az.us/ http://www.stilyagin.com/ |
