diff --git a/config/action.d/pf.conf b/config/action.d/pf.conf index deb38c09..02fbcd8d 100644 --- a/config/action.d/pf.conf +++ b/config/action.d/pf.conf @@ -15,8 +15,8 @@ # # we don't enable PF automatically; to enable run pfctl -e # or add `pf_enable="YES"` to /etc/rc.conf (tested on FreeBSD) -actionstart = echo "table <-> persist counters" | pfctl -f- - echo "block proto from <-> to " | pfctl -f- +actionstart = echo "table <-> persist counters" | pfctl -a f2b/ -f- + echo "block proto from <-> to " | pfctl -a f2b/ -f- # Option: start_on_demand - to start action on demand # Example: `action=pf[actionstart_on_demand=true]` @@ -27,16 +27,16 @@ actionstart_on_demand = false # Values: CMD # # we only disable PF rules we've installed prior -actionstop = pfctl -sr 2>/dev/null | grep -v - | pfctl -f- - pfctl -t - -T flush - pfctl -t - -T kill +actionstop = pfctl -a f2b/ -sr 2>/dev/null | grep -v - | pfctl -a f2b/ -f- + pfctl -a f2b/ -t - -T flush + pfctl -a f2b/ -t - -T kill # Option: actioncheck # Notes.: command executed once before each actionban command # Values: CMD # -actioncheck = pfctl -sr | grep -q - +actioncheck = pfctl -a f2b/ -sr | grep -q - # Option: actionban @@ -47,7 +47,7 @@ actioncheck = pfctl -sr | grep -q - #