diff options
-rw-r--r-- | ChangeLog | 2 | ||||
-rw-r--r-- | config/action.d/npf.conf | 61 |
2 files changed, 63 insertions, 0 deletions
@@ -39,6 +39,8 @@ releases. ### New Features +* New Actions: + - `action.d/npf.conf` for NPF, the latest packet filter for NetBSD ### Enhancements * DateTemplate regexp extended with the word-end boundary, additionally to diff --git a/config/action.d/npf.conf b/config/action.d/npf.conf new file mode 100644 index 00000000..8b00d177 --- /dev/null +++ b/config/action.d/npf.conf @@ -0,0 +1,61 @@ +# Fail2Ban configuration file +# +# NetBSD npf ban/unban +# +# Author: Nils Ratusznik <nils@NetBSD.org> +# Based on pf.conf action file +# + +[Definition] + +# Option: actionstart +# Notes.: command executed once at the start of Fail2Ban. +# Values: CMD +# +# we don't enable NPF automatically, as it will be enabled elsewhere +actionstart = + + +# Option: actionstop +# Notes.: command executed once at the end of Fail2Ban +# Values: CMD +# +# we don't disable NPF automatically either +actionstop = + + +# Option: actioncheck +# Notes.: command executed once before each actionban command +# Values: CMD +# +actioncheck = + + +# Option: actionban +# Notes.: command executed when banning an IP. Take care that the +# command is executed with Fail2Ban user rights. +# Tags: <ip> IP address +# <failures> number of failures +# <time> unix timestamp of the ban time +# Values: CMD +# +actionban = /sbin/npfctl table <tablename> add <ip> + + +# Option: actionunban +# Notes.: command executed when unbanning an IP. Take care that the +# command is executed with Fail2Ban user rights. +# Tags: <ip> IP address +# <failures> number of failures +# <time> unix timestamp of the ban time +# Values: CMD +# +# note -r option used to remove matching rule +actionunban = /sbin/npfctl table <tablename> rem <ip> + +[Init] +# Option: tablename +# Notes.: The pf table name. +# Values: [ STRING ] +# +tablename = fail2ban |