Block then pass, and not pass then block, this allowed people to be blocked multiple time

2021-02-28 18:30:52 +01:00 · 2021-02-28 18:30:52 +01:00 · 09e16ad795
parent 517c24f322
commit 09e16ad795
1 changed files with 1 additions and 1 deletions
--- a/README.md
+++ b/README.md
@ -21,8 +21,8 @@ blocking_tcp="{ 21 23 53 111 135 137:139 445 1433 25565 5432 3389 3306 27019 }"

 table <blocked> persist

-pass in quick on egress proto tcp to port $blocking_tcp rdr-to 127.0.0.1 port 666
 block in quick from <blocked> label iblock
+pass in quick on egress proto tcp to port $blocking_tcp rdr-to 127.0.0.1 port 666
 ```

 Done! You can see IP banned using `pfctl -t blocked -T show` and iBlock will log blocking too.