include apache2::proxy_http
include apache2::expires
+ # security-tracker abusers
+ # 66.170.99.1 20189796 excessive number of requests
+ # 66.170.99.2 20189796 excessive number of requests
+ @ferm::rule { 'dsa-sectracker-abusers':
+ prio => "000",
+ rule => "saddr (66.170.99.1 66.170.99.2) DROP",
+ }
+
+
ssl::service { 'security-tracker.debian.org':
notify => Exec['service apache2 reload'],
key => true,