Hello All,

Because I was getting tired of the Cenesys scanners bypassing pfSense and portknocking, I set up the OS/2 firewall and it works great.

Here's what I have for Cenesys so far:

deny 167.248.133.0 255.255.255.0 0.0.0.0 0.0.0.0 all any 0 any 0 both both both
deny 167.94.138.0 255.255.255.0 0.0.0.0 0.0.0.0 all any 0 any 0 both both both
deny 167.142.125.0 255.255.255.0 0.0.0.0 0.0.0.0 all any 0 any 0 both both both

Remember that the 255.255.255.0 is not the subnet but rather the number of digits in each octal I want checked. So far Cenesys has been attacking me with CIDR /24 groups with each address.

If nothing else, at least this allows me to use some of my skill set and keep it fresh in my mind.

If anyone wants my FWFILTRS.CNF file, let me know.

-- Sean

... May you live all the days of your live. - Jonathan Swift
--- GoldED/2 3.0.1
* Origin: Micronet World HQ - bbs.outpostbbs.net:10123 (618:618/1)
* Synchronet * CAPCITY2 * capcity2.synchro.net * Telnet/SSH:2022/Rlogin/HTTP