From owner-freebsd-questions@FreeBSD.ORG Thu Mar 3 23:58:06 2011 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 78377106566C for ; Thu, 3 Mar 2011 23:58:06 +0000 (UTC) (envelope-from gibblertron@gmail.com) Received: from mail-iy0-f182.google.com (mail-iy0-f182.google.com [209.85.210.182]) by mx1.freebsd.org (Postfix) with ESMTP id 3FE388FC18 for ; Thu, 3 Mar 2011 23:58:05 +0000 (UTC) Received: by iyj12 with SMTP id 12so1687013iyj.13 for ; Thu, 03 Mar 2011 15:58:05 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=x0WQm7m0IKpYpQZdM8eG9UsbnPgPfmvZbxAW2Br/SoI=; b=CpUEYNR7FzPAAji50Q9kkA/c+Dcv8ed93KSmHr/u9uEHTUn57obYzGxEcI7bB0OUcY /zLYzK3IRy0xI9rlR0SORqOfKBfjfrfPuCz3k/FJ2phSkGSA+8MQqowStNR00obKp9lP +VzsamuYKIwlIlK+fV+xG4BpOTow60pH+8Q+Y= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; b=N0vgSxYaITz9L2EB/csoKPv1JarsFPjx0CQu85lhhcyPStafXQLOa3Q0rt2PfIw4sP hFM7sUvIh22pw/ZWM9IxXZHvUkmyPLY4SBAY+zsU9vHIIrmafw6W5tCry28bsimnW0yl SCEbOCyk3WeFiISXiEoFx9tTz5Go4F246o72Q= MIME-Version: 1.0 Received: by 10.231.36.198 with SMTP id u6mr1411346ibd.100.1299196685425; Thu, 03 Mar 2011 15:58:05 -0800 (PST) Received: by 10.231.38.2 with HTTP; Thu, 3 Mar 2011 15:58:05 -0800 (PST) In-Reply-To: <3382016411-764985335@intranet.com.mx> References: <3382016411-764985335@intranet.com.mx> Date: Thu, 3 Mar 2011 15:58:05 -0800 Message-ID: From: Patrick Gibson To: Jorge Biquez Content-Type: text/plain; charset=ISO-8859-1 Cc: freebsd-questions@freebsd.org Subject: Re: Simplest way to deny access to a class C X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 03 Mar 2011 23:58:06 -0000 You might consider mod_security (/usr/ports/www/mod_security) which can be set up to ban hosts based on behaviour or characteristics. Or fail2ban (/usr/ports/security/py-fail2ban) is really great, too, in that it scans whatever logs you want, and can trigger a block in your firewall if enough violating log entries are found within a particular period of time. Everything is totally configurable, and there are plenty of examples that come with it. Patrick On Thu, Mar 3, 2011 at 8:59 AM, Jorge Biquez wrote: > Hello all. > > I am sorry in advance if this question sounds too stupid. > > I have a small server for personal use of webpages running: > > 7.3-PRERELEASE FreeBSD 7.3-PRERELEASE #0 > > it is working fine , no problem very stable. > > I just need to block some IP class C address that are always trying to > "discover" directories or applications under the web server. They do not do > and can not do anything since this server has nothing installed but i am > tired of seeing in the logs all the intents they do every 2-3 seconds. > > I have not installed any kind of firewall yet. > What do you think is the best way to accomplish this task? If possible the > easiest one. I do not want to do anything else but just bloc IP's, at this > moment at least. > > Thanks in advance. > > Jorge Biquez > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" >