Operations grimoire/Firewall

From Nasqueron Agora
< Operations grimoire
Revision as of 00:30, 21 October 2024 by Dereckson (talk | contribs) (Very basic pf)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

📕📁📜 Old technical information :: content warning

⌛ This Nasqueron Operations Grimoire page hasn't been updated for a long time.

☣ As our infrastructure evolves quickly, there is a good chance this information is outdated or now inaccurate. Be careful and consider update it.

➡️ To assert the information is still up-to-date or not, you can check the history of the relevant role in our Operations repository.

pf

Work in progress. As of 2024-10-21, pf is only deployed to Hervil.

pf is installed on FreeBSD and OpenBSD servers.

Block a specific IP or range

IP addresses or ranges to block can be added to the badhost table: 

     $ pfctl -t badhosts -T add $IP_TO_BLOCK
     $ pfctl -t badhosts -T show
     $ pfctl -t badhosts -T delete $IP_TO_BLOCK
Retrieved from "https://agora.nasqueron.org/index.php?title=Operations_grimoire/Firewall&oldid=1660"