ssh and http brute-force scenarios are not triggered because pfsense already has sshguard with more aggressive defaults (three strikes and a 2 min. ban). We may want a new scenario to catch and share these ban events. Sshguard cannot be disabled but raising its threshold we can verify that ssh and http scenarios are working.
ssh and http brute-force scenarios are not triggered because pfsense already has sshguard with more aggressive defaults (three strikes and a 2 min. ban). We may want a new scenario to catch and share these ban events. Sshguard cannot be disabled but raising its threshold we can verify that ssh and http scenarios are working.