Positive condition for adding in the table?
Ivan Radovanovic
rivanr at gmail.com
Tue Aug 25 10:04:27 UTC 2009
I am new into pf configuration and I am curious if it is possible to add
some host into table in firewall rules if some conditions are met (not
if they are broken). I was thinking about some way to prevent port
scanning of machine and what came to me as obvious way to do it is this
(in some pseudocode)
block all communication with bad_guys
allow all communication with good_guys
allow any communication with my open port and put ip in good_guys table
block sending any rst packet from me and put ip in bad_guys table /*
somebody tried to connect to non-open port */
/* more criteria to remove someone from good_guys and put in bad_guys,
according to connection rate, etc */
Anyway when I tried to code this into pf rules I discovered that I can't
put host into table according to positive condition. Is there some
workaround for this?
More information about the freebsd-pf
mailing list