Mercurial > syslog2iptables

annotate syslog2iptables.conf.top @ 82:384532d596c0 default tip

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Added tag stable-1-0-19 for changeset cc01f2caff37
author Carl Byington <carl@five-ten-sg.com>
date Sun, 11 Feb 2024 12:06:36 -0800
parents cc01f2caff37
children
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
rev   line source
81
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
1 context monitor2 {
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
2 threshold 150;
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
3 add_command "echo 'rate limit exceeded' | mail -s 'rate limit exceeded' carl@five-ten-sg.com";
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
4 remove_command "true";
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
5 file "/var/log/maillog" {
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
6 pattern "milter=dnsbl, .* reject=550 (.*) (unique|recipient) .* limit exceeded" {
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
7 index 1; // zero based
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
8 bucket 100;
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
9 message "rate limit exceeded";
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
10 };
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
11 };
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
12 };
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
13
61
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
14 context general {
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
15 threshold 550;
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
16
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
17 add_command "/sbin/iptables -I INPUT --src %s --jump DROP";
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
18 remove_command "/sbin/iptables -D INPUT --src %s --jump DROP";
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
19
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
20 ignore {
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
21 127.0.0.0/8; // localhost
81
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
22 192.168.0.0/16; // internal networks
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
23 172.102.240.82/30; // 510sg data center
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
24 172.102.240.42/30; // 510sg data center
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
25 216.86.213.0/24; // mbmg
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
26 104.53.80.243/32; // davd att
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
27 75.140.46.51/32; // davd spectrum
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
28 67.227.199.34/32; // routerdog
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
29 67.227.199.43/32; // routerdog
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
30 69.167.152.113/32; // routerdog
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
31 69.167.152.152/32; // routerdog
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
32 209.59.129.6/32; // routerdog
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
33 205.139.110.0/24; // mimecast probing smtp banners
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
34 207.211.31.0/24; // mimecast probing smtp banners
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
35 216.205.24.0/24; // mimecast probing smtp banners
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
36 63.128.21.0/24; // mimecast probing smtp banners
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
37 146.101.78.0/24; // mimecast probing smtp banners
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
38 207.82.80.0/24; // mimecast probing smtp banners
61
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
39 };
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
40
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
41 file "/var/log/secure" {
63
60f59936fabb good authentication prevents ip blocking for awhile
Carl Byington <carl@five-ten-sg.com>
parents: 61
diff changeset
42 pattern "manual unblock (.*)" {
60f59936fabb good authentication prevents ip blocking for awhile
Carl Byington <carl@five-ten-sg.com>
parents: 61
diff changeset
43 index 1; // zero based
60f59936fabb good authentication prevents ip blocking for awhile
Carl Byington <carl@five-ten-sg.com>
parents: 61
diff changeset
44 bucket -5000;
60f59936fabb good authentication prevents ip blocking for awhile
Carl Byington <carl@five-ten-sg.com>
parents: 61
diff changeset
45 message "manual unblock";
60f59936fabb good authentication prevents ip blocking for awhile
Carl Byington <carl@five-ten-sg.com>
parents: 61
diff changeset
46 };
66
d179292293eb fix default config dovecot regular expressions; add manual blocking expression
Carl Byington <carl@five-ten-sg.com>
parents: 65
diff changeset
47 pattern "manual block (.*)" {
d179292293eb fix default config dovecot regular expressions; add manual blocking expression
Carl Byington <carl@five-ten-sg.com>
parents: 65
diff changeset
48 index 1; // zero based
d179292293eb fix default config dovecot regular expressions; add manual blocking expression
Carl Byington <carl@five-ten-sg.com>
parents: 65
diff changeset
49 bucket 5000;
d179292293eb fix default config dovecot regular expressions; add manual blocking expression
Carl Byington <carl@five-ten-sg.com>
parents: 65
diff changeset
50 message "manual block";
d179292293eb fix default config dovecot regular expressions; add manual blocking expression
Carl Byington <carl@five-ten-sg.com>
parents: 65
diff changeset
51 };
61
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
52 pattern "sshd.*Failed password .* from ::ffff:(.*) port" {
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
53 index 1; // zero based
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
54 bucket 400;
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
55 message "ssh failed password";
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
56 };
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
57 pattern "sshd.*Failed password .* from (.*) port" {
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
58 index 1; // zero based
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
59 bucket 400;
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
60 message "ssh failed password";
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
61 };
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
62 pattern "sshd.*authentication failure; .* rhost=(.*) " {
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
63 index 1; // zero based
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
64 bucket 400;
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
65 message "ssh failed password";
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
66 };
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
67 pattern "sshd.*Did not receive identification string from (.*)" {
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
68 index 1; // zero based
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
69 bucket 400;
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
70 message "ssh failed password";
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
71 };
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
72 pattern "proftpd.*no such user found from (.*) \[" {
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
73 index 1; // zero based
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
74 bucket 400;
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
75 message "ftp failed password";
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
76 };
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
77 pattern "proftpd.* authentication failure; .* rhost=(.*) " {
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
78 index 1; // zero based
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
79 bucket 400;
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
80 message "ftp failed password";
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
81 };
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
82 pattern "vsftpd.* authentication failure; .* rhost=(.*) " {
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
83 index 1; // zero based
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
84 bucket 400;
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
85 message "ftp failed password";
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
86 };
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
87 };
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
88
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
89 file "/var/log/messages" {
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
90 pattern "kernel.*local-net-to.*SRC=(.*) DST=.*DPT=" {
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
91 index 1; // zero based
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
92 bucket 400;
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
93 message "kernel firewall blocked packet";
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
94 };
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
95 pattern "kernel.*outside-net-from.*SRC=(.*) DST=.*DPT=" {
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
96 index 1; // zero based
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
97 bucket 400;
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
98 message "kernel firewall blocked packet";
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
99 };
81
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
100 pattern "named.* (.*)#.*denied$" {
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
101 index 1; // zero based
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
102 bucket 100;
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
103 message "dns query denied";
cc01f2caff37 add error_log to the httpd files
Carl Byington <carl@five-ten-sg.com>
parents: 75
diff changeset
104 };
61
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
105 };
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
106
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
107 file "/var/log/maillog" {
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
108 pattern "lost input channel from.* \[(.*)\] .* after (mail|rcpt|auth)" {
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
109 index 1; // zero based
63
60f59936fabb good authentication prevents ip blocking for awhile
Carl Byington <carl@five-ten-sg.com>
parents: 61
diff changeset
110 bucket 100;
61
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
111 message "sendmail spammer dropping connection";
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
112 };
63
60f59936fabb good authentication prevents ip blocking for awhile
Carl Byington <carl@five-ten-sg.com>
parents: 61
diff changeset
113 pattern " \[(.*)\].* possible SMTP attack" {
61
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
114 index 1; // zero based
63
60f59936fabb good authentication prevents ip blocking for awhile
Carl Byington <carl@five-ten-sg.com>
parents: 61
diff changeset
115 bucket 100;
61
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
116 message "sendmail authentication attack";
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
117 };
69
0e736950a117 fix post uninstall script; allow config bucket count zero to disable a pattern
Carl Byington <carl@five-ten-sg.com>
parents: 66
diff changeset
118 #pattern "rejecting commands from.* \[(.*)\] due to pre-greeting traffic" {
0e736950a117 fix post uninstall script; allow config bucket count zero to disable a pattern
Carl Byington <carl@five-ten-sg.com>
parents: 66
diff changeset
119 # index 1; // zero based
0e736950a117 fix post uninstall script; allow config bucket count zero to disable a pattern
Carl Byington <carl@five-ten-sg.com>
parents: 66
diff changeset
120 # bucket 0; // disable - iphone setup trips this; bucket 1800;
0e736950a117 fix post uninstall script; allow config bucket count zero to disable a pattern
Carl Byington <carl@five-ten-sg.com>
parents: 66
diff changeset
121 # message "sendmail pre-greeting";
0e736950a117 fix post uninstall script; allow config bucket count zero to disable a pattern
Carl Byington <carl@five-ten-sg.com>
parents: 66
diff changeset
122 #};
75
ae5e6bcc5017 sendmail auth failure detection for both login and plain methods
Carl Byington <carl@five-ten-sg.com>
parents: 69
diff changeset
123 pattern "authentication failure: .* failed, .*\[(.*)\]" {
61
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
124 index 1; // zero based
63
60f59936fabb good authentication prevents ip blocking for awhile
Carl Byington <carl@five-ten-sg.com>
parents: 61
diff changeset
125 bucket 100;
60f59936fabb good authentication prevents ip blocking for awhile
Carl Byington <carl@five-ten-sg.com>
parents: 61
diff changeset
126 message "sendmail authentication failed";
61
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
127 };
65
f17e6599b82c fix default config regular expressions for geedy matching
Carl Byington <carl@five-ten-sg.com>
parents: 63
diff changeset
128 pattern "dovecot.*Aborted login .* rip=(.*), lip=" {
61
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
129 index 1; // zero based
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
130 bucket 100;
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
131 message "dovecot failed password";
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
132 };
75
ae5e6bcc5017 sendmail auth failure detection for both login and plain methods
Carl Byington <carl@five-ten-sg.com>
parents: 69
diff changeset
133 pattern "dovecot.*Disconnected.*auth failed.* rip=(.*), lip=" {
66
d179292293eb fix default config dovecot regular expressions; add manual blocking expression
Carl Byington <carl@five-ten-sg.com>
parents: 65
diff changeset
134 index 1; // zero based
d179292293eb fix default config dovecot regular expressions; add manual blocking expression
Carl Byington <carl@five-ten-sg.com>
parents: 65
diff changeset
135 bucket 100;
d179292293eb fix default config dovecot regular expressions; add manual blocking expression
Carl Byington <carl@five-ten-sg.com>
parents: 65
diff changeset
136 message "dovecot failed password";
d179292293eb fix default config dovecot regular expressions; add manual blocking expression
Carl Byington <carl@five-ten-sg.com>
parents: 65
diff changeset
137 };
d179292293eb fix default config dovecot regular expressions; add manual blocking expression
Carl Byington <carl@five-ten-sg.com>
parents: 65
diff changeset
138 pattern "dovecot.*Login: user=.* rip=(.*), lip=" {
61
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
139 index 1; // zero based
63
60f59936fabb good authentication prevents ip blocking for awhile
Carl Byington <carl@five-ten-sg.com>
parents: 61
diff changeset
140 bucket -5000;
60f59936fabb good authentication prevents ip blocking for awhile
Carl Byington <carl@five-ten-sg.com>
parents: 61
diff changeset
141 message "dovecot good authentication";
60f59936fabb good authentication prevents ip blocking for awhile
Carl Byington <carl@five-ten-sg.com>
parents: 61
diff changeset
142 };
60f59936fabb good authentication prevents ip blocking for awhile
Carl Byington <carl@five-ten-sg.com>
parents: 61
diff changeset
143 pattern "sendmail.*AUTH=server, .*\[(.*)\]," {
60f59936fabb good authentication prevents ip blocking for awhile
Carl Byington <carl@five-ten-sg.com>
parents: 61
diff changeset
144 index 1; // zero based
60f59936fabb good authentication prevents ip blocking for awhile
Carl Byington <carl@five-ten-sg.com>
parents: 61
diff changeset
145 bucket -5000;
60f59936fabb good authentication prevents ip blocking for awhile
Carl Byington <carl@five-ten-sg.com>
parents: 61
diff changeset
146 message "sendmail good authentication";
61
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
147 };
d80641be405b add script to build syslog2iptables.conf
Carl Byington <carl@five-ten-sg.com>
parents:
diff changeset
148 };