I would like csf to add blocked IP's to an address list on a Mikrotik Cloud Router Switch or maybe Cloud Core Router, for blocking at the edge switch or router for my rack.
It's trivial to turn a CRS into a stealth firewall, just split off port 1 from the switchgroup and bridge it to the master port for the remaining ports. This would be the ideal place to filter traffic, as a hit on one server can then be blocked for everything, even the stuff that cant run CSF. There is an API to do this, with various languages available.
So my question really is, is there a way I can get CSF to call an external script, that won't be broken after every upgrade? Or is there a better way to do it?
Cheers, awesome script btw!
Safest way to expand upon CSF?
-
ForumAdmin
- Moderator
- Posts: 1524
- Joined: 01 Oct 2008, 09:24
Re: Safest way to expand upon CSF?
You could use the BLOCK_REPORT option which you would point to a script to perform whatever actions you want. See csf.conf and the csf readme.txt for more information about the option.
-
supportingit
- Junior Member
- Posts: 2
- Joined: 09 Aug 2014, 08:33
Re: Safest way to expand upon CSF?
Awesome, cheers!
Just realised. D'oh! RTFM!
Just realised. D'oh! RTFM!