Update of /cvsroot/routingtools/tools/sysconfig
In directory sc8-pr-cvs1:/tmp/cvs-serv2398/sysconfig
Modified Files:
firewall
Log Message:
- tuned reject icmp messages
- added a connection rate limiter
- ability to block hostile hosts/nets
Index: firewall
===================================================================
RCS file: /cvsroot/routingtools/tools/sysconfig/firewall,v
retrieving revision 1.6
retrieving revision 1.7
diff -C2 -d -r1.6 -r1.7
*** firewall 24 Aug 2003 12:38:43 -0000 1.6
--- firewall 12 Nov 2003 23:18:35 -0000 1.7
***************
*** 46,49 ****
--- 46,58 ----
FW_TRUSTEDHOSTS="213.183.181.1"
+ # hostile hosts and nets
+ FW_HOSTILE="68.98.0.0/16"
+
+ # connection rate limiter (port avg burst)
+ FW_RATES="_21 _22 _80"
+ FW_RATE_21="ftp 20/hour 50"
+ FW_RATE_22="ssh 1/minute 10"
+ FW_RATE_80="http 10/second 100"
+
# known spy and adware servers
FW_SPYBLOCK=""
***************
*** 76,79 ****
--- 85,93 ----
#
# $Log$
+ # Revision 1.7 2003/11/12 23:18:35 hurikhan
+ # - tuned reject icmp messages
+ # - added a connection rate limiter
+ # - ability to block hostile hosts/nets
+ #
# Revision 1.6 2003/08/24 12:38:43 hurikhan
# - added IPSec to firewall rules
|
