bobs
/
SYN-Scan-Firewall
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
Port Scanning with block that IP with a banner...
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
10 Commits
1 Branch
0 Tags
4.2 MiB
 
 
Tag: Branch: Tree: main
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'main'
${ noResults }
SYN-Scan-Firewall/README.md

881 B
Raw Permalink Blame History

SYN-Scan-Firewall

To block the IP from port scans...

./install.sh

/etc/SYN-Scan-Firewall/config.yaml

blockDuration: 10m
maxScanAttempts: 5
device: "enp2s0"              # Ethernet Device name  

logging:
  filePath: "/var/log/SYN-Scan-Firewall.log"
  maxSizeMB: 10               # Max log size in megabytes
  backups: 5                  # Number of backup logs to keep
  compressBackups: true       # Whether to gzip old logs
  timestampFormat: "2006-01-02T15:04:05" # Go time format

ignoredPorts:
  - 80    # HTTP
  - 443   # HTTPS
  - 9980  # php -S
  - 631   # CUPS (printing)
  - 9100  # print server ports
  - 53    # DNS
  - 123   # NTP
  - 68    # DHCP client
#  - 22    # SSH

whitelistedIPs:
  - "192.168.10.2"   # own IP
  - "192.168.1.100"  # Example local admin
  - "10.0.0.50"      # Example monitoring server
  - "127.0.0.1"      # Localhost