From 06d453739b634978f46a6376e5ac7527ddc0dc16 Mon Sep 17 00:00:00 2001
From: Hendrik Jaeger <root@netwichtig.de>
Date: Sun, 4 Aug 2019 12:50:18 +0200
Subject: Update firewall setup (iptables, nftables)

Add nftables module
Add nftables snippets to needed modules
Update included modules on leonardo so nftables rules are complete
Fix package names in related modules, and similar errors
---
 files/etc/logcheck/ignore.d.server/local-nftables | 1 +
 1 file changed, 1 insertion(+)
 create mode 100644 files/etc/logcheck/ignore.d.server/local-nftables

(limited to 'files/etc')

diff --git a/files/etc/logcheck/ignore.d.server/local-nftables b/files/etc/logcheck/ignore.d.server/local-nftables
new file mode 100644
index 0000000..5793c0d
--- /dev/null
+++ b/files/etc/logcheck/ignore.d.server/local-nftables
@@ -0,0 +1 @@
+^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ kernel: \[[[:digit:][:space:].]+\] Bruteforce attack: IN=[[:alnum:]]+ OUT= MAC=[[:digit:]a-f:]+ SRC=[[:digit:]a-f:.]+ DST=[[:digit:]a-f:.]+ LEN=[[:digit:]]+ (TC=[[:digit:]]+ HOPLIMIT=[[:digit:]]+ FLOWLBL=[[:digit:]]+|TOS=0x[[:xdigit:]]+ PREC=0x[[:xdigit:]]+ TTL=[[:digit:]]+ ID=[[:digit:]]+) (DF )?PROTO=(TCP|UDP) SPT=[[:digit:]]+ DPT=[[:digit:]]+ (WINDOW=[[:digit:]]+ RES=0x00 (CWR ECE )?(SYN|ACK|RST) (PSH )?(FIN )??URGP=[[:digit:]]+|LEN=[[:digit:]]+)$
-- 
cgit v1.2.3