Will the BFD or any brute force detector work if I am logging to a remote syslog server?
BFD is here:
and it will automatically block and IP with the APF firewall, after 6 login failures.
APF is here:
Will that or any other brute force detectors work if I have it syslogd logging to a remote server?
In the conf.bfd file, it specifies the local server path to message and secure, and if I have the server logging to a remote server I don't believe any messages go there:
# Do kernel logging
# System kernel log
# System secure log
Is there any to get brute force blocking and remote server logging?