From: <hur...@us...> - 2003-11-12 23:18:42
|
Update of /cvsroot/routingtools/tools/sysconfig In directory sc8-pr-cvs1:/tmp/cvs-serv2398/sysconfig Modified Files: firewall Log Message: - tuned reject icmp messages - added a connection rate limiter - ability to block hostile hosts/nets Index: firewall =================================================================== RCS file: /cvsroot/routingtools/tools/sysconfig/firewall,v retrieving revision 1.6 retrieving revision 1.7 diff -C2 -d -r1.6 -r1.7 *** firewall 24 Aug 2003 12:38:43 -0000 1.6 --- firewall 12 Nov 2003 23:18:35 -0000 1.7 *************** *** 46,49 **** --- 46,58 ---- FW_TRUSTEDHOSTS="213.183.181.1" + # hostile hosts and nets + FW_HOSTILE="68.98.0.0/16" + + # connection rate limiter (port avg burst) + FW_RATES="_21 _22 _80" + FW_RATE_21="ftp 20/hour 50" + FW_RATE_22="ssh 1/minute 10" + FW_RATE_80="http 10/second 100" + # known spy and adware servers FW_SPYBLOCK="" *************** *** 76,79 **** --- 85,93 ---- # # $Log$ + # Revision 1.7 2003/11/12 23:18:35 hurikhan + # - tuned reject icmp messages + # - added a connection rate limiter + # - ability to block hostile hosts/nets + # # Revision 1.6 2003/08/24 12:38:43 hurikhan # - added IPSec to firewall rules |