I guess it doesn't make sense to have a small solution that will be replaced later. Actually there are some projects that might do the job better: http://www.snortsam.net/ http://sourceforge.net/projects/packetfence/
Give it some time and you'll see something like that in pfsense or at least as an installable package :-) Holger -----Ursprüngliche Nachricht----- Von: Jason Landry [mailto:[EMAIL PROTECTED] Gesendet: Montag, 18. Juli 2005 07:08 An: pfsense Betreff: [pfSense Support] Intrusion Prevention I know that intrusion prevention is on the radar, but what are the chances of a relatively simple version to start? My thought was something along these lines: If W connections are attempted through X ports within Y minutes, block the source /24 subnet for Z minutes. Any connection attempt that has an incoming rule defined that allows the connection would not count against the number of attempts. I have absolutely no ability to program this stuff (I'm a SQL guy), and I have no idea of how difficult it would be, but I thought I'd offer the suggestion. Thanks for all your hard work to date! --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] ____________ Virus checked by G DATA AntiVirusKit --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
