Thanks for your quick reply.
In the NPF framework I feel there is no support for portscan protection like the way it present in linux netfilter framework using "recent" algorithm.
If any inputs related to the portscan prevention in NPF will be greatly appreciable.
On Mon, Aug 11, 2014 at 5:02 PM, Jeremy C. Reed
<reed%reedmedia.net@localhost> wrote:
On Mon, 11 Aug 2014, harshavardhan Reddy wrote:
> Is the portscan protection is provided in netBSD..?
See pkgsrc's net/iplog or security/portsentry packages. Also net/snort
can be configured to detect some port scans.
Also see http://www.openwall.com/scanlogd/ (but I don't see it in
pkgsrc).
You can probably also setup NPF (or the other packet filters) to detect
certain flags and do logging based on the matches.