Block then pass, and not pass then block, this allowed people to be blocked multiple time
This commit is contained in:
parent
517c24f322
commit
09e16ad795
|
@ -21,8 +21,8 @@ blocking_tcp="{ 21 23 53 111 135 137:139 445 1433 25565 5432 3389 3306 27019 }"
|
||||||
|
|
||||||
table <blocked> persist
|
table <blocked> persist
|
||||||
|
|
||||||
pass in quick on egress proto tcp to port $blocking_tcp rdr-to 127.0.0.1 port 666
|
|
||||||
block in quick from <blocked> label iblock
|
block in quick from <blocked> label iblock
|
||||||
|
pass in quick on egress proto tcp to port $blocking_tcp rdr-to 127.0.0.1 port 666
|
||||||
```
|
```
|
||||||
|
|
||||||
Done! You can see IP banned using `pfctl -t blocked -T show` and iBlock will log blocking too.
|
Done! You can see IP banned using `pfctl -t blocked -T show` and iBlock will log blocking too.
|
||||||
|
|
Loading…
Reference in New Issue