On Wednesday 21 September 2011 14:06:08 Mauricio López wrote:
> I'm thinking about making an script using awk and pftop output to watch
> for states that have more than 1Mb of traffic (regular DNS queries
> aren't that big) and put those hosts in a table for blocking. My
> question is if it is the
I'm currently using a pfSense box as a gateway and I was recently victim
of a DNS DOS attack. That made me think how I could blacklist those IPs
automatically. I looked through the pf documentation and the thing that
seemed more like it was the max-src-conn-rate option, but then I
realized that it'
