Skip to content

Latest commit

 

History

History
38 lines (27 loc) · 1.42 KB

README.md

File metadata and controls

38 lines (27 loc) · 1.42 KB
Raw

Packet Filter file configuration and some tables and scripts

🎯 This repository hosts a file configuration of Packet Filter on OpenBSD

📝 Here the man for the Packet Filter service configuration file.

🛡️ Secure your network home or a standalone server and reduce the noisy traffic.

Prerequisites

  • You need to have an account with doas set correctly.
  • Create a folder pf-tables in /etc like:
    • mkdir -p /etc/pf-tables

Usage

RAW Tables

  • pf-810ck-81u3734m.pft raw list of all IP's coming from my own honeypot analysis.
    • block in/out
    • crontab: @daily

Scripts

  • pf-53cu217y-2314y.sh create a raw list of all IP's requested badly your httpd trhoufg relayd

    • block in
    • crontab: @daily

  • pf-810ck-f4c3800k.sh create a raw list of all IP's under Facebook's AS.

    • block in/out
    • crontab: @daily

  • pf-810ck-m41n.sh create a raw list from famous stong providers.

    • block in/out
    • crontab: @daily

Blueteam - Check new settings

  • You can check through pfctl the statitics or the log of pflog0
    • pfctl -vvs Tables

🐡 Have fun!