Mercurial > syslog2iptables
diff syslog2iptables.conf @ 9:d76f9ff42487
initial coding
| author | carl |
|---|---|
| date | Sat, 03 Dec 2005 13:54:47 -0800 |
| parents | 276c4edc8521 |
| children | 0d65c3de34fd |
line wrap: on
line diff
--- a/syslog2iptables.conf Fri Dec 02 20:55:32 2005 -0800 +++ b/syslog2iptables.conf Sat Dec 03 13:54:47 2005 -0800 @@ -1,4 +1,4 @@ -threshold 600; +threshold 550; ignore { 127.0.0.0/8; // localhost @@ -17,21 +17,21 @@ file "/var/log/secure" { pattern "sshd.*Failed password .* from ::ffff:(.*) port" { index 1; // zero based - bucket 300; + bucket 400; }; pattern "sshd.*Failed password .* from (.*) port" { index 1; // zero based - bucket 300; + bucket 400; }; }; -file "/var/log/messages" { - pattern "sshd.pam_unix.*authentication failure.*rhost=(.*) user=" { - index 1; // zero based - bucket 300; - }; - pattern "sshd.pam_unix.*authentication failure.*rhost=(.*)$" { - index 1; // zero based - bucket 300; - }; -}; +// file "/var/log/messages" { +// pattern "sshd.pam_unix.*authentication failure.*rhost=(.*) user=" { +// index 1; // zero based +// bucket 300; +// }; +// pattern "sshd.pam_unix.*authentication failure.*rhost=(.*)$" { +// index 1; // zero based +// bucket 300; +// }; +// };