HomeDevCentral

Enable pf firewall

Description

Enable pf firewall

Summary:
Brute-force attacks can create a lot of noise in system logs.
It could be convenient to be able to use a command to block a specific IP:

$ pfctl -t badhosts -T add $IP_TO_BLOCK

pf has the advantage to create easier to read rules than ipfilter and ipfw,
and to be still actively maintained.

Test Plan: Deployed on Hervil

Reviewers: DorianWinty

Reviewed By: DorianWinty

Differential Revision: https://devcentral.nasqueron.org/D3549

Details

Provenance
derecksonAuthored on Oct 20 2024, 23:55
derecksonPushed on Sat, Oct 26, 14:34
Reviewer
DorianWinty
Differential Revision
D3549: Enable pf firewall
Parents
rOPS9d40b30d4f8c: Resolve public IPv4 interface
Branches
Unknown
Tags
Unknown