Forgive me for sounding boring but I just want to make sure we're both understanding each other, what is the output of;
Code:
cat /etc/pf.garbage.txt
I want to make sure that you know there is a difference between adding IPs to the table via PF and adding manually IPs to the table using a file editor such as vi/pico/nano. IPs added to the table via PF will NOT remain there after you have reloaded the config file but if you manually add an IP to the file it will never be removed from the file unless you remove it yourself.
So, for example, rather than;
Code:
pfctl -t ssh-violations -T add 62.141.48.0/20
instead go for;
Code:
echo '62.141.48.0/20' >> /etc/ssh-violations.txt
That way your IP ranges will never get removed.