firewall – folc4

fail2ban on freebsd with pf

% sudo pkg install py27-fail2ban

% sudo vim /usr/local/etc/fail2ban/jail.local

[ssh-pf]
enabled = true
filter = sshd
action = pf
logpath = /var/log/auth.log

% sudo vim /usr/local/etc/fail2ban/action.d/pf.conf

[Definition]
actionstart =
actionstop =
actioncheck =
actionban = /sbin/pfctl -t <tablename> -T add /32
actionunban = /sbin/pfctl -t <tablename> -T delete /32

[Init]
tablename = fail2ban

% sudo vim /etc/pf.conf

table <fail2ban> persist
block in on $ext_if from <fail2ban>

% sudo vim /etc/rc.conf

fail2ban_enable="YES"

% sudo service pf reload % sudo service fail2ban restart

% sudo pfctl -t fail2ban -T show

http://www.fail2ban.org/wiki/index.php/Talk:HOWTO_use_geoiplookup

Borderlands 2 timeout

I could not host or join most friends’ games in Borderlands 2. It probably tries to use uPNP, which I don’t enable on my router.

Searched for clues on forums (incoming ports to forward) and finally got it working:

  7777 (TCP/UDP)
  9989 (UDP)
 27900 (UDP)
 28900 (TCP)
 28910 (TCP)
  6500 (UDP)

I know for sure 6500 is necessary, but maybe some of the others are not.

About network security and tunneling

“This paper demonstrates how to encapsulate any TCP-based protocol (SMTP, POP3, NNTP, telnet…) into HTTP”

Punching holes into firewalls

or “Why firewalls shouldn’t be considered a ultimate weapon for network security”
or “Secure TCP-into-HTTP tunnelling guide”

http://sebsauvage.net/punching/