I have SSHguard install on my FreeBSD server. With exception of ignoring its whitelist and blocking my home IP it has been a great aid
I am trying to build a
The order I am doing this ia
"table(1)". is my personal white list. I was trying work out a way to make this table persistent. the the
I am trying to build a
IPFW
table where I can list my home IPs to keep access when SSGuard blocks meThe order I am doing this ia
Code:
$IPF 10 allow all from any to any via lo0
$IPF 11 deny log ip from "table(10)" to any
$IPF 15 allow ip from "table(1)" to any
$IPF 16 allow tcp from any to any 9000 in setup keep-state
$IPF 17 allow tcp from any to any 9000 out setup keep-state
$IPF 18 deny log ip from "table(22)" to any keep-state
$IPF 20 deny all from any to 127.0.0.0/8
$IPF 30 deny all from 127.0.0.0/8 to any
"table(1)". is my personal white list. I was trying work out a way to make this table persistent. the the
IPFW
documentation it would have appear that IPFW table(1) lock
would accomplish this but I am guessing not in system reboot. Am I getting too fancy trying to use a table?