Date: Tue, 11 Apr 2006 21:05:02 +0930 From: "Daniel O'Connor" <doconnor@gsoft.com.au> To: freebsd-stable@freebsd.org Cc: Matteo 'egon' Baldi <ml@egonflower.com> Subject: Re: bruteforce Message-ID: <200604112105.09788.doconnor@gsoft.com.au> In-Reply-To: <443B6FC8.8080503@egonflower.com> References: <443B6FC8.8080503@egonflower.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--nextPart10664525.Hyudp35kP9 Content-Type: text/plain; charset="iso-8859-15" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Tuesday 11 April 2006 18:28, Matteo 'egon' Baldi wrote: > gate# pfctl -f /etc/pf.conf > /etc/pf.conf:48: illegal timeout name max-src-conn-rate > pfctl: Syntax error in config file: pf rules not loaded Your version of FreeBSD is too old and has a version of pf that pre-dates t= his=20 feature. I suggest an upgrade to RELENG_6 or wait until 6.1 comes out. PS here is a page with how I do it..=20 http://www.gsoft.com.au/~doconnor/brute-force-mitigation.html (With a script to expire IPs from the table) =2D-=20 Daniel O'Connor software and network engineer for Genesis Software - http://www.gsoft.com.au "The nice thing about standards is that there are so many of them to choose from." -- Andrew Tanenbaum GPG Fingerprint - 5596 B766 97C0 0E94 4347 295E E593 DC20 7B3F CE8C --nextPart10664525.Hyudp35kP9 Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2 (FreeBSD) iD8DBQBEO5Rt5ZPcIHs/zowRAvQvAJ9s0T7Jmh4QIqncNIxnOuWE1bVG4QCeMSNS +wRI/U0KWy31KzuyfK8zRaA= =zQmF -----END PGP SIGNATURE----- --nextPart10664525.Hyudp35kP9--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200604112105.09788.doconnor>