[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[ipqbdb-users] ipqbdb v1.03
|
From: |
Alessandro Vesely |
|
Subject: |
[ipqbdb-users] ipqbdb v1.03 |
|
Date: |
Thu, 10 Mar 2011 18:40:48 +0100 |
|
User-agent: |
Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2.15) Gecko/20110303 Lightning/1.0b2 Thunderbird/3.1.9 |
Changes and new features:
* New option --exec-connkill (-e for short) in ibd-ban and ibd-parse.
When this option is given, if an updated address reaches 100% block
probability then an external command is invoked. The command is to
be configured in a new configuration file, and presumably kills any
established connection. Using "conntrack -D" seems to work well, as
it allows the stateful firewall to thereafter detect extraneous
packets on its own.
This is more efficient than filtering each output packet in order
to mark unwanted ones, as it doesn't imply queuing to user space.
The two methods are not exactly equivalent, but they can be used
concurrently.
* ibd-config displays the new configuration file, and also the maximum
initial-count that the architecture supports.
* New options for ibd-judge allow to configure nfnetfilter buffer
size, ENOBUFS error notification, and each queue's max length.
* Most listing options of ibd-del (--ls, --ls-ban) now compute decay
so as to display the percentage that would effectively result in
case a packet arrives from the corresponding IP at the present time.
--
Download http://download.savannah.gnu.org/releases/ipqbdb/
Main https://savannah.nongnu.org/projects/ipqbdb/
List http://lists.nongnu.org/mailman/listinfo/ipqbdb-users
| [Prev in Thread] |
Current Thread |
[Next in Thread] |
- [ipqbdb-users] ipqbdb v1.03,
Alessandro Vesely <=