[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[ipqbdb-users] ipqbdb v1.03

From: Alessandro Vesely
Subject: [ipqbdb-users] ipqbdb v1.03
Date: Thu, 10 Mar 2011 18:40:48 +0100
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv: Gecko/20110303 Lightning/1.0b2 Thunderbird/3.1.9

Changes and new features:

* New option --exec-connkill (-e for short) in ibd-ban and ibd-parse.
  When this option is given, if an updated address reaches 100% block
  probability then an external command is invoked.  The command is to
  be configured in a new configuration file, and presumably kills any
  established connection.  Using "conntrack -D" seems to work well, as
  it allows the stateful firewall to thereafter detect extraneous
  packets on its own.

  This is more efficient than filtering each output packet in order
  to mark unwanted ones, as it doesn't imply queuing to user space.
  The two methods are not exactly equivalent, but they can be used

* ibd-config displays the new configuration file, and also the maximum
  initial-count that the architecture supports.

* New options for ibd-judge allow to configure nfnetfilter buffer
  size, ENOBUFS error notification, and each queue's max length.

* Most listing options of ibd-del (--ls, --ls-ban) now compute decay
  so as to display the percentage that would effectively result in
  case a packet arrives from the corresponding IP at the present time.

Download http://download.savannah.gnu.org/releases/ipqbdb/
Main https://savannah.nongnu.org/projects/ipqbdb/
List http://lists.nongnu.org/mailman/listinfo/ipqbdb-users

reply via email to

[Prev in Thread] Current Thread [Next in Thread]