Re: fail2ban for NetBSD-based routers & networks

To: matthew sporleder <msporleder%gmail.com@localhost>
Subject: Re: fail2ban for NetBSD-based routers & networks
From: "Erik E. Fair" <fair%netbsd.org@localhost>
Date: Mon, 11 Feb 2013 19:57:28 -0800

The key question for me is not just banning peer host on a given host from
reading its logs, but forwarding host ban information to my router in an
authenticated (and possibly encrypted) manner such that the offending host's
packets never reach my LAN at all for the duration of the ban.

One answer is to forward logs (ah, syslog ...) to the router for it to parse
directly, but that has issues, too. I'd argue that the data reduction
should be done on the attacked host.

        Erik <fair%netbsd.org@localhost>

Follow-Ups:
- Re: fail2ban for NetBSD-based routers & networks
  - From: Adrian Steinmann

References:
- fail2ban for NetBSD-based routers & networks
  - From: Erik Fair
- Re: fail2ban for NetBSD-based routers & networks
  - From: matthew sporleder

Prev by Date: Re: fail2ban for NetBSD-based routers & networks
Next by Date: Re: fail2ban for NetBSD-based routers & networks
Previous by Thread: Re: fail2ban for NetBSD-based routers & networks
Next by Thread: Re: fail2ban for NetBSD-based routers & networks
Indexes:

Home | Main Index | Thread Index | Old Index