fwbuilder and others private chains
|
View:
New views
3 Messages
—
Rating Filter:
Alert me
|
 |
fwbuilder and others private chains
by Ethy H. Brito-2
::
Rate this Message:
Hi Vadim I am implementing a brute force attack prevention rules with Fail2ban. I read http://www.fwbuilder.org/slideshows/fwb3_block_ssh_scans_1/slide_1.html. So far so good. The thing is that FWB is flushing all chains when it is started. This machine has other chains (under mangle table for instance) created by other scripts that must not be touched by anyone else but itselves. Is that a way to tell FWB to NOT flush other party chains or some chains selectively?? Tricky, isn't it!? Regards Ethy ------------------------------------------------------------------------------ Come build with us! The BlackBerry(R) Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9 - 12, 2009. Register now! http://p.sf.net/sfu/devconference _______________________________________________ Fwbuilder-discussion mailing list Fwbuilder-discussion@... https://lists.sourceforge.net/lists/listinfo/fwbuilder-discussion |
|
|
Re: fwbuilder and others private chains
by Vadim Kurland ✎
::
Rate this Message:
On Oct 8, 2009, at 8:32 AM, Ethy H. Brito wrote: > > Hi Vadim > > I am implementing a brute force attack prevention rules with Fail2ban. > I read > http://www.fwbuilder.org/slideshows/fwb3_block_ssh_scans_1/slide_1.html > . > > So far so good. > > The thing is that FWB is flushing all chains when it is started. > This machine has other chains (under mangle table for instance) > created by > other scripts that must not be touched by anyone else but itselves. > > Is that a way to tell FWB to NOT flush other party chains or some > chains > selectively?? Tricky, isn't it!? there is no way to turn this off. You could recreate these custom chains in fwbuilder and run scripts that control them from the epilog section to populate them with rules. --vk ------------------------------------------------------------------------------ Come build with us! The BlackBerry(R) Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9 - 12, 2009. Register now! http://p.sf.net/sfu/devconference _______________________________________________ Fwbuilder-discussion mailing list Fwbuilder-discussion@... https://lists.sourceforge.net/lists/listinfo/fwbuilder-discussion |
|
|
Re: fwbuilder and others private chains
by Whit Blauvelt
::
Rate this Message:
Ethy,
This probably isn't the best way, but as at least a workaround, under Firewall Settings | Prolog/Epilog you could set up a script to add back your special rules (pro- or epi-). The trick would be to have Fail2ban and other such scripts keep a current file of rules set by them, that could be used by the prolog or epilog script to reset them. Best, Whit On Thu, Oct 08, 2009 at 12:32:26PM -0300, Ethy H. Brito wrote: > > Hi Vadim > > I am implementing a brute force attack prevention rules with Fail2ban. > I read > http://www.fwbuilder.org/slideshows/fwb3_block_ssh_scans_1/slide_1.html. > > So far so good. > > The thing is that FWB is flushing all chains when it is started. > This machine has other chains (under mangle table for instance) created by > other scripts that must not be touched by anyone else but itselves. > > Is that a way to tell FWB to NOT flush other party chains or some chains > selectively?? Tricky, isn't it!? > > Regards > > Ethy ------------------------------------------------------------------------------ Come build with us! The BlackBerry(R) Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9 - 12, 2009. Register now! http://p.sf.net/sfu/devconference _______________________________________________ Fwbuilder-discussion mailing list Fwbuilder-discussion@... https://lists.sourceforge.net/lists/listinfo/fwbuilder-discussion |
| Free embeddable forum powered by Nabble | Forum Help |
