iblock to block scanner

iblock is an inetd program adding the client IP to a Packet Filter table.

It is meant to be used to block scanner connecting on unused ports.

Upon connection, the IP is added to a PF table and all established connections with this IP are killed. You need to use a PF bloking rule using the table.
Permalien

tags : blacklist block inetd openbsd pf pl-fr scanner security sécurité
0 vote
19/02/2024 14:48
Ecrit par Comète - Afficher l'article originel
Vus : 91
Publié par Comète : 152