On Sat, Jun 14, 2014 at 01:17:14PM +0200, St?phane Guedon wrote:
> Second, I am wondering if someone knows or has written some tool to prevent
> yourself from being locked out of your online ssh server when writing pf
> rules.
>
> Something like : copy the new pf rules in /tmp, load them, and as
Le samedi 14 juin 2014 05:55:19, vous avez écrit :
> > If the user doesn't answer, that means for some reason pf has blocked ssh
> > connection.
>
> This shouldn't happen as long as you don't flush your state table.
That happened quite often. Obviously I am to blame. Now I take extra
precaution.
I just use something like
pfctl -v -f /etc/pf.conf.new ; sleep 30; pfctl -f /etc/pf.conf
in a tmux session. That gives me 30 seconds to test what I was going to
test and then reverts to the original file.
--
Gregor Best
--
After I run your program, let's make love like crazed w
On Sat, Jun 14, 2014 at 7:17 AM, Stéphane Guedon
wrote:
> Hello the list.
>
> First, I wish you all a great weekend.
>
> Second, I am wondering if someone knows or has written some tool to prevent
> yourself from being locked out of your online ssh server when writing pf
> rules.
>
At the top o
4 matches
Mail list logo
