From mboxrd@z Thu Jan 1 00:00:00 1970 From: Bob Brewer To: development@lists.ipfire.org Subject: Re: IPCop Banish Addon for IPFire Date: Mon, 07 Jan 2019 10:07:52 +0000 Message-ID: In-Reply-To: <20190107073910.Horde.qkAR68ETx7xfl65l2Z93pdY@whytea.ipfire-zuhause.de> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="===============0548683332390158138==" List-Id: --===============0548683332390158138== Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 8bit Daniel Weismüller wrote: > Hi Rob, > > thanks for your work. > I don't know the banish addon for IPCop so I've read the readme.md on your > github link. > > But I don't see the advantage against the way to make firewall rules over > the firewall.cgi > > Please share your view of things with me. > Hi Daniel Thank you for your interest. I have uploaded a couple of screenshots to github showing the Banish configuration page and the Banish Log page which I hope will help to show the difference with firewall.cgi. I have a blocklist of about 150 IP Addresses, CIDR, or fully qualified domain names which have shown themselves to be long term abusers and Banish is a very good way of managing this list. I use Banish as part of an overall blocklist to protect my mail server from abuse. I also have an in house IPFire front end addon to Fail2ban running on the mail server which uses a dynamic blocklist for short and medium term abuse with Banish used for blocking long term abuse. I have been using various flavors of Banish with IPCop for a number of years and find it very easy to manage my blocked resources which I think would be quite difficult if I used just firewall rules. Rob --===============0548683332390158138==--