Re: [Feature Request] Allow pfctl to reset statistics for an individual IP address

On 2024/11/19 22:51, Rob LA LAU wrote: > I'd like to request the implementation of a new feature in pfctl. > This new feature, as stated in the subject, would allow resetting the > statistics for a single IP address. > > The resetting of statistics for all IP addresses in a specified table is > al

Re: [Feature Request] Allow pfctl to reset statistics for an individual IP address

On Tue, 19 Nov 2024 22:51:25 +0100, Rob LA LAU wrote: > > The resetting of statistics for all IP addresses in a specified table is > already implemented (`pfctl -t sometable -T zero'). > However, resetting the statistics for a single IP address in a table > would allow me to continuously block rep

Re: [Feature Request] Allow pfctl to reset statistics for an individual IP address

Okay, that's very well possible. But your mail didn't really change that... Could you elaborate? On 20/11/2024 17:16, Theo de Raadt wrote: Anyway, the patch is here, so it's a matter of time before this feature appears in FreeBSD. Uhm yeah, good luck with that. I don't think you understand t

Re: [Feature Request] Allow pfctl to reset statistics for an individual IP address

On 2024/11/20 17:31, Rob LA LAU wrote: > Okay, that's very well possible. But your mail didn't really change that... > Could you elaborate? FreeBSD's PF is from about 20 years ago and has diverged a lot. They generally aren't taking new things from OpenBSD PF. OTOH this is a simple change and the

Re: [Feature Request] Allow pfctl to reset statistics for an individual IP address

> Anyway, the patch is here, so it's a matter of time before this > feature appears in FreeBSD. Uhm yeah, good luck with that. I don't think you understand the situation.

Re: [Feature Request] Allow pfctl to reset statistics for an individual IP address

I see. I'll shoot another request into the FreeBSD bug tracker. Thanks. On 20/11/2024 17:51, Stuart Henderson wrote: On 2024/11/20 17:31, Rob LA LAU wrote: Okay, that's very well possible. But your mail didn't really change that... Could you elaborate? FreeBSD's PF is from about 20 years ag

Re: [Feature Request] Allow pfctl to reset statistics for an individual IP address

I've seen the patch already. Thanks all involved for the super-fast response. To answer your question... On 20/11/2024 12:24, Stuart Henderson wrote: ...don't those tools already manage expiry? I haven't used blacklistd or fail2ban, but sshguard does, with increasing timeouts for repeat offende

Total system freeze up when running large programs on x58 mobo running 7.6-stable

>Synopsis: Total system freeze up on x58 when running larger >programs Category: system x11 >Environment: System : OpenBSD 7.6 Details : OpenBSD 7.6 (GENERIC.MP) #338: Mon Sep 30 08:55:35 MDT 2024 dera...@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERIC.MP

Re: powerpc64/pmap.c trouble report

Eric, or anyone with a powerpc64 with a lot of ram, does this diff prevent panics in uvm_fault or crashes on "trap type 300"? I did reproduce a "trap type 300" with 8g ram once on 2024-11-05, but failed to reproduce it again. I have now found some code in powerpc64's pte_insert that might put a p