From d08db22b92be8b559ad2351c6f739ee5e242fd62 Mon Sep 17 00:00:00 2001 From: Nils Date: Sun, 7 Aug 2016 17:46:04 +0200 Subject: [PATCH] Create npf.conf for the NPF packet filter This file adds support for the NPF packet filter, available on NetBSD since version 6.0 --- config/action.d/npf.conf | 61 ++++++++++++++++++++++++++++++++++++++++ 1 file changed, 61 insertions(+) create mode 100644 config/action.d/npf.conf diff --git a/config/action.d/npf.conf b/config/action.d/npf.conf new file mode 100644 index 00000000..8b00d177 --- /dev/null +++ b/config/action.d/npf.conf @@ -0,0 +1,61 @@ +# Fail2Ban configuration file +# +# NetBSD npf ban/unban +# +# Author: Nils Ratusznik +# Based on pf.conf action file +# + +[Definition] + +# Option: actionstart +# Notes.: command executed once at the start of Fail2Ban. +# Values: CMD +# +# we don't enable NPF automatically, as it will be enabled elsewhere +actionstart = + + +# Option: actionstop +# Notes.: command executed once at the end of Fail2Ban +# Values: CMD +# +# we don't disable NPF automatically either +actionstop = + + +# Option: actioncheck +# Notes.: command executed once before each actionban command +# Values: CMD +# +actioncheck = + + +# Option: actionban +# Notes.: command executed when banning an IP. Take care that the +# command is executed with Fail2Ban user rights. +# Tags: IP address +# number of failures +#