From 47b1ee39d8e5e918afaea40f361b3932a2b8616e Mon Sep 17 00:00:00 2001
From: Daniel Black <grooverdan@users.sourceforge.net>
Date: Sun, 17 Feb 2013 12:37:34 +1100
Subject: [PATCH] add blocking type

---
 config/action.d/route.conf | 10 ++++++++--
 1 file changed, 8 insertions(+), 2 deletions(-)

diff --git a/config/action.d/route.conf b/config/action.d/route.conf
index 2d11c700..ec940b74 100644
--- a/config/action.d/route.conf
+++ b/config/action.d/route.conf
@@ -15,5 +15,11 @@
 #   - Blocking is per IP and NOT per service, but ideal as action against ssh password bruteforcing hosts
 
 [Definition]
-actionban   = ip route add blackhole <ip>
-actionunban = ip route del blackhole <ip>
+actionban   = ip route add <type> <ip>
+actionunban = ip route del <type> <ip>
+
+# Type of blocking
+#
+# Type can be blackhole, unreachable and prohibit. Unreachable and prohibit correspond to the ICMP reject messages.
+
+type = blackhole