Menu
▾
▴
Re: [Sshguard-users] Is sshguard working?
|
From: James H. <jam...@gm...> - 2015-08-04 00:41:19
|
If sshguard is running on this system shouldn't we see the block rules in this list ? To have them actually block the allow port 22 rule (and maybe the other allow rules) need to move but shouldn't we see the rules that have been added? On Mon, Aug 3, 2015 at 5:35 PM, Kevin Zheng <kev...@gm...> wrote: > On 08/03/2015 19:22, li...@la... wrote: > > 02500 allow tcp from any to me dst-port 22 > > ipfw is a first-rule-wins firewall. Since SSHGuard adds rules for ipfw > around rule 50000 (at least using the current, crash-prone ipfw > backend), its rules are never matched. You'll need to adjust your > ruleset so that this particular rule has a lower number. > > Best, > Kevin Zheng > > -- > Kevin Zheng > kev...@gm... | ke...@kd... | PGP: 0xC22E1090 > > > ------------------------------------------------------------------------------ > _______________________________________________ > Sshguard-users mailing list > Ssh...@li... > https://lists.sourceforge.net/lists/listinfo/sshguard-users > -- James Harris Software Engineer jam...@gm... |
