< ^ txt
Wed Dec 23 09:35:47 EST 2015
Slept from one to nine.
Rainy and sixty today.
Goals:
- Finish Christmas shopping and wrapping
Shopping done, but not wrapping.
- Verify that sshguard is working on blinky
Well, yes, but it's adding ipfw rules farther along the chain than my ssh allow rule.
sshguard appears to create all the ipfw rules in the 55000 range.
I moved my ssh allow rule to 59000.
That should do the trick. I'll keep an eye on it.
Yeah... the rule order for ssh and sshguard are right.
However, I'm not seeing any counts on the sshguard block rules.
I wonder if the nat rules are ordered wrong.
It's a shame there isn't much documentation on ipfw kernel nat.
I fucking hate ipfw.
Shit. I think I figured it out.
I don't need the skipto rule for nat for my use here.
Still not working right.
Everytime I think I've got ipfw figured out... nope.
< ^ txt