APF 限制拒绝 IP？

Question

在 APF 配置文件（通常位于 /etc/apf/conf.apf）中，搜索 SET_TRIM。默认值似乎是 150，可以更改为无限制或特定数字。

此外，还可以更改刷新值以更改规则刷新间隔的时间。当此功能处于活动状态时，它将发出 iptables flush，清除您直接使用 iptables 设置的所有规则。

# This controls how often, if at all, we want the trust system to refresh rules.
# The firewall will flush & reload all static rules, redownload global rules and
# re-resolve any dns names in the rules. This is ideal when using dynamic dns
# names or downloadable global trust rules. [value in minutes, 0 to disable]
SET_REFRESH="10"

# This is the total amount of rules allowed inside of the deny trust system.
# When this limit is reached, the deny rule files will begin to purge older
# entries to maintain the set limit. [value is max lines, 0 for unlimited]
SET_TRIM="150"

Answer 1

在 APF 配置文件（通常位于 /etc/apf/conf.apf）中，搜索 SET_TRIM。默认值似乎是 150，可以更改为无限制或特定数字。

此外，还可以更改刷新值以更改规则刷新间隔的时间。当此功能处于活动状态时，它将发出 iptables flush，清除您直接使用 iptables 设置的所有规则。

# This controls how often, if at all, we want the trust system to refresh rules.
# The firewall will flush & reload all static rules, redownload global rules and
# re-resolve any dns names in the rules. This is ideal when using dynamic dns
# names or downloadable global trust rules. [value in minutes, 0 to disable]
SET_REFRESH="10"

# This is the total amount of rules allowed inside of the deny trust system.
# When this limit is reached, the deny rule files will begin to purge older
# entries to maintain the set limit. [value is max lines, 0 for unlimited]
SET_TRIM="150"

APF 限制拒绝 IP？

答案1

相关内容