From Sean Dennis@CAPCITY2 to All on Tue Jul 26 16:03:00 2022
Because I was getting tired of the Cenesys scanners bypassing pfSense and portknocking, I set up the OS/2 firewall and it works great.
Here's what I have for Cenesys so far:
deny 22.214.171.124 255.255.255.0 0.0.0.0 0.0.0.0 all any 0 any 0 both both both
deny 126.96.36.199 255.255.255.0 0.0.0.0 0.0.0.0 all any 0 any 0 both both both
deny 188.8.131.52 255.255.255.0 0.0.0.0 0.0.0.0 all any 0 any 0 both both both
Remember that the 255.255.255.0 is not the subnet but rather the number of digits in each octal I want checked. So far Cenesys has been attacking me with CIDR /24 groups with each address.
If nothing else, at least this allows me to use some of my skill set and keep it fresh in my mind.
If anyone wants my FWFILTRS.CNF file, let me know.
... May you live all the days of your live. - Jonathan Swift
--- GoldED/2 3.0.1
* Origin: Micronet World HQ - bbs.outpostbbs.net:10123 (618:618/1)
* Synchronet * CAPCITY2 * capcity2.synchro.net * Telnet/SSH:2022/Rlogin/HTTP