Re: pfsync for sshguard table sync on several hosts

2016-10-12 Thread mxb 

> On 12 okt. 2016, at 09:05, Zeus Panchenko  wrote:
> 
> isn't psync aimed for the tasks like this one?

No, it is not.
PFSync is for replicating states between two or more nodes(firewalls).


___
freebsd-pf@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-pf
To unsubscribe, send any mail to "freebsd-pf-unsubscr...@freebsd.org"

Re: psync for sshguard table sync on several hosts

2016-10-12 Thread mxb 

Use BGP to distribute list of IP addresses.
Like it is done at http://bgp-spamd.net/ 

//mxb

> On 11 okt. 2016, at 19:59, Zeus Panchenko  wrote:
> 
> Signed PGP part
> hi,
> 
> please advise
> 
> I think of pfsync-ing sshguard table content among several hosts to get
> one big table on each host, since IP blocked on one host I want to be
> blocked on all others automatically (all hosts are terminated in one
> VPN) ...
> 
> am I correct to consider psync as right way to get that?
> 
> --
> Zeus V. Panchenko jid:z...@im.ibs.dn.ua
> IT Dpt., I.B.S. LLC GMT+2 (EET)
> 
> ___
> freebsd-pf@freebsd.org mailing list
> https://lists.freebsd.org/mailman/listinfo/freebsd-pf
> To unsubscribe, send any mail to "freebsd-pf-unsubscr...@freebsd.org"

___
freebsd-pf@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-pf
To unsubscribe, send any mail to "freebsd-pf-unsubscr...@freebsd.org"

Re: pfsync for sshguard table sync on several hosts

2016-10-12 Thread Zeus Panchenko 
mxb  wrote:

> Use BGP to distribute list of IP addresses.
> Like it is done at http://bgp-spamd.net/

what about pfsync indeed? I need black list of addresses I do can
control on my own and to install BGP infrastructure for local needs
looks excessive

isn't psync aimed for the tasks like this one?

-- 
Zeus V. Panchenko   jid:z...@im.ibs.dn.ua
IT Dpt., I.B.S. LLC   GMT+2 (EET)


pgpXSyCIWQRD7.pgp
Description: PGP signature