I don't use
pass out all keep state
but for ssh connection i use
TCP_PASS_OUT= "{22}"
EXT_IF = "em0"
block all
pass out on $EXT_IF proto tcp to any port $TCP_PASS_OUT keep state
I don't have anything like that in make.conf, but net/samba44 is working with security/heimdal on my FreeBSD zse.stg.pl 11.0-RELEASE-p6 FreeBSD 11.0-RELEASE-p6 #1 r294083M
Problem is that sshd is only runnig on first FIB
Make a copy :
/etc/ssh/sshd_config like:
/etc/ssh/sshd_config_re1
change:
ListenAddress to_your_second_IP
and run
/usr/sbin/setfib -F 1 /usr/sbin/sshd -f /etc/ssh/sshd_config_re1
Add this to /etc/rc.local to start on reboot.
Change loglevel in /usr/local/etc/fail2ban/fail2ban.conf to
loglevel = INFO
I am using pf, but you should have in /var/log/fail2ban.log something like that:
2016-11-22 09:25:09,080 fail2ban.filter [98338]: INFO [ssh-pf] Found 172.21.1.22
2016-11-22 09:25:09,089 fail2ban.filter...
I had some free time, so I checked your problem on fresh version on Hyper-V:
uname -a
FreeBSD zse 10.2-RELEASE FreeBSD 10.2-RELEASE #0 r286666: Wed Aug 12 15:26:37 UTC 2015 root@releng1.nyi.freebsd.org:/usr/obj/usr/src/sys/GENERIC amd64
cat /etc/make.conf
WITH_OPENSSL_PORT=yes...
Hi,
You should have
May 18 18:16:07 zse postgrey[3774]: Process Backgrounded
May 18 18:16:07 zse postgrey[3774]: 2016/05/18-18:16:07 postgrey (type Net::Server::Multiplex) starting! pid(3774)
May 18 18:16:07 zse postgrey[3774]: Resolved [localhost]:10023 to [127.0.0.1]:10023, IPv4
May 18...
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.