| Firewalling with OpenBSD's PF packet filter: EuroBSDCon 2007, København, September 12th 2007 | ||
|---|---|---|
| Prev | Next | |
These tables grow; waste memory.
Table contents could become less useful over time (DHCP leases expire, etc)
Enter Henrik Gustafsson's expiretable
Remove <bruteforce> table entries older than 24 hours - add to /etc/rc.local:
/usr/local/sbin/expiretable -v -d -t 24h bruteforce
Get it from ports/packages or http://expiretable.fnord.se/