From 09e16ad795bdde20abfd628869ea500ba941fa1f Mon Sep 17 00:00:00 2001 From: Solene Rapenne Date: Sun, 28 Feb 2021 18:30:52 +0100 Subject: [PATCH] Block then pass, and not pass then block, this allowed people to be blocked multiple time --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index 496f555..a7ea991 100644 --- a/README.md +++ b/README.md @@ -21,8 +21,8 @@ blocking_tcp="{ 21 23 53 111 135 137:139 445 1433 25565 5432 3389 3306 27019 }" table persist -pass in quick on egress proto tcp to port $blocking_tcp rdr-to 127.0.0.1 port 666 block in quick from label iblock +pass in quick on egress proto tcp to port $blocking_tcp rdr-to 127.0.0.1 port 666 ``` Done! You can see IP banned using `pfctl -t blocked -T show` and iBlock will log blocking too.