This is for those who're FreeBSD Unix system admins:
Is there a way to drop/disconnected an IP addresss on-the-fly?
I've got an old server running FreeBSD 4.11, which, for a variety of reasons, cannot be upgraded to current kernel (long story). So, we're stuck dealing with it as-is. The server's been running without incident for ~18 years and has never suffered a breach or internal security issue. Trouble-makers are routinely added to our ipf firewall's deny list, which does a good job of keeping them away. However, this one (46.229.168... Advanced Hosters of Netherlands), although blocked at the firewall, is constantly banging on the site (currently pinging 40+ ports with variations of the core IP (e.g., 46.229.168.74, 46.229.168.72, 46.229.168.68, et al) and they're beginning to bog-down our connection.
Another server's running BSD 6.x, with tcpdrop, which makes dropping offending IPs like AH easy. But, unfortunately, the BSD 4.11 doesn't include tcpdrop, so I'm looking to find an alternative way of dropping IP connections.
Anyone?