On 2021-03-24, jeanpierre <jeanpie...@jeanpierredevilliers.xyz> wrote: > Does there exist an OpenBSD analogue for FreeBSD's blacklistd daemon? > > For the sake of completeness: blacklistd is a daemon that, using pf > anchors, blocks connections from abusive hosts to parctiular services > (e.g. sshd) until they start behaving themselves again. > > I find it very useful for timming down log files. > > Regards, > Jean-Pierre > >
sshguard (in ports) should do something like this. sometimes PF's built-in source-tracking (max-src-conn-rate) is good enough. another way is to block all connections, except from specific wanted IPs, or connections over VPN.
