Re: TARPIT for pf/ipfw

2009-01-18 Thread Eugene Perevyazko
On Fri, Jan 16, 2009 at 01:21:15PM -0800, Chuck Swiger wrote: > On Jan 16, 2009, at 3:50 AM, Eugene Perevyazko wrote: > >On Fri, Jan 16, 2009 at 12:20:21PM +0300, Alexey Ivanov wrote: > >>Is there any command identical to: > >> iptables -A INPUT -p tcp -m tcp -dport 80 -j TARPIT > >> > >>If n

Re: TARPIT for pf/ipfw

2009-01-16 Thread Chuck Swiger
On Jan 16, 2009, at 3:50 AM, Eugene Perevyazko wrote: On Fri, Jan 16, 2009 at 12:20:21PM +0300, Alexey Ivanov wrote: Is there any command identical to: iptables -A INPUT -p tcp -m tcp -dport 80 -j TARPIT If no, does anyone ever tried to implement this feature? I'm thinking on implement

Re: TARPIT for pf/ipfw

2009-01-16 Thread Eugene Perevyazko
On Fri, Jan 16, 2009 at 12:20:21PM +0300, Alexey Ivanov wrote: > Is there any command identical to: > iptables -A INPUT -p tcp -m tcp -dport 80 -j TARPIT > > If no, does anyone ever tried to implement this feature? I'm thinking on implementing it in ipfw but it'll be a week or two later,

Re: TARPIT for pf/ipfw

2009-01-16 Thread Dimitar Vasilev
see spamd for mail and you may use the don't peer list of sbl . 2009/1/16 Vlad GALU > This particular iptables module keeps the incoming connection up and > running, but it sends ACKs advertising a window size of 0 bytes, so > that the remote end can't send any data until the local process has >

Re: TARPIT for pf/ipfw

2009-01-16 Thread Dimitar Vasilev
see spamd for mail and you may use the don't peer list of sbl . 2009/1/16 Vlad GALU > This particular iptables module keeps the incoming connection up and > running, but it sends ACKs advertising a window size of 0 bytes, so > that the remote end can't send any data until the local process has >

Re: TARPIT for pf/ipfw

2009-01-16 Thread Vlad GALU
This particular iptables module keeps the incoming connection up and running, but it sends ACKs advertising a window size of 0 bytes, so that the remote end can't send any data until the local process has decided it's ok to do so. Basically it's used to slow down spammers and worms. On Fri, Jan 16

Re: TARPIT for pf/ipfw

2009-01-16 Thread Ivo Vachkov
what does TARPIT do ? On Fri, Jan 16, 2009 at 11:20 AM, Alexey Ivanov wrote: > Is there any command identical to: >iptables -A INPUT -p tcp -m tcp -dport 80 -j TARPIT > > If no, does anyone ever tried to implement this feature? > > ___ > freebsd

TARPIT for pf/ipfw

2009-01-16 Thread Alexey Ivanov
Is there any command identical to: iptables -A INPUT -p tcp -m tcp -dport 80 -j TARPIT If no, does anyone ever tried to implement this feature? ___ freebsd-net@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To uns