I just updated to the RC 2 candidate and sshlockout is working except there is a bug. When an IP that is full size (15 character) is entered into the sshlockout table for example XXX.XXX.XXX.XXX its IP address is entered as XXX.XXX.XXX.XX, the last number is missing. This means the IP can continue on its merry way of brute forcing the SSH username and password. This does not happen if the IP address has 14 characters or less. This was a similar bug in previous versions.
Does anyone know how to fix this issue?
Thanks for reporting.
I found the issue http://redmine.pfsense.org/issues/1519 and will soon commit it.