bruteforce
Daniel O'Connor
doconnor at gsoft.com.au
Tue Apr 11 11:35:28 UTC 2006
On Tuesday 11 April 2006 18:28, Matteo 'egon' Baldi wrote:
> gate# pfctl -f /etc/pf.conf
> /etc/pf.conf:48: illegal timeout name max-src-conn-rate
> pfctl: Syntax error in config file: pf rules not loaded
Your version of FreeBSD is too old and has a version of pf that pre-dates this
feature.
I suggest an upgrade to RELENG_6 or wait until 6.1 comes out.
PS here is a page with how I do it..
http://www.gsoft.com.au/~doconnor/brute-force-mitigation.html
(With a script to expire IPs from the table)
--
Daniel O'Connor software and network engineer
for Genesis Software - http://www.gsoft.com.au
"The nice thing about standards is that there
are so many of them to choose from."
-- Andrew Tanenbaum
GPG Fingerprint - 5596 B766 97C0 0E94 4347 295E E593 DC20 7B3F CE8C
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-stable/attachments/20060411/9cb93b02/attachment.pgp
More information about the freebsd-stable
mailing list