mirror of
https://github.com/xzcrpw/blackwall.git
synced 2026-04-24 11:56:21 +02:00
v2.0.0: adaptive eBPF firewall with AI honeypot and P2P threat mesh
This commit is contained in:
Vladyslav Soliannikov
commit
37c6bbf5a1
133 changed files with 28073 additions and 0 deletions
34
deploy/examples/blackwallpolicy-sample.yaml
Executable file
34
deploy/examples/blackwallpolicy-sample.yaml
Executable file
|
|
@ -0,0 +1,34 @@
|
|||
# Example BlackwallPolicy — drop known bad IPs, tarpit scanners
|
||||
apiVersion: security.blackwall.io/v1alpha1
|
||||
kind: BlackwallPolicy
|
||||
metadata:
|
||||
name: default-policy
|
||||
namespace: blackwall-system
|
||||
spec:
|
||||
rules:
|
||||
blocklist:
|
||||
- ip: "192.168.1.100"
|
||||
action: drop
|
||||
duration: "1h"
|
||||
- ip: "10.0.0.0/8"
|
||||
action: tarpit
|
||||
- ip: "203.0.113.0/24"
|
||||
action: drop
|
||||
allowlist:
|
||||
- ip: "192.168.0.0/16"
|
||||
reason: "internal network"
|
||||
thresholds:
|
||||
entropyAnomaly: 6500
|
||||
synFloodRate: 1000
|
||||
tarpit:
|
||||
enabled: true
|
||||
port: 2222
|
||||
baseDelayMs: 100
|
||||
maxDelayMs: 30000
|
||||
ai:
|
||||
enabled: true
|
||||
model: "qwen3:1.7b"
|
||||
fallbackModel: "qwen3:0.6b"
|
||||
network:
|
||||
interface: "auto"
|
||||
xdpMode: "native"
|
||||
Loading…
Add table
Add a link
Reference in a new issue