On 14:48, Wed 22 Feb 06, Chris Smith wrote:
In addition to preventing infected PC's from using their own SMTP engine
to send out spam by blocking port 25 from all but the mail server. I
would also like to add those hosts automatically to a table in order to
block their access altogether so
If you have any other uses for changing firewall rules dynamically,
then I'd love to hear them! dfd_keeper can already peacefully coexist
with anchors and tables
I don't know if you remember a discussion from several months
back, but the ability to change pf rules on the fly, reliably,
is
Didn't notice this was to the list too.
As I said to the OP, I use asynchronous I/O; there is one
in-user-memory image of what the rules should look like, and multiple
clients are all simultaneously handled by one thread. Commands to the
daemon are atomic, and commits to pfctl will commit the