Chris Smith <[email protected]> writes:
> Searching for a method to create a table based on the contents a file
> but slightly modified without needing to modify the file itself.
not currently doable, it seems, but putting negations in the file to be
fed works -
peter@deeperthought:~$ cat tablemuff
table <muff> persist file "/home/peter/mufftable"
peter@deeperthought:~$ cat mufftable
192.168.103/24
!192.168.103.21
peter@deeperthought:~$ sudo pfctl -vf tablemuff
table <muff> persist file "/home/peter/mufftable"
peter@deeperthought:~$ sudo pfctl -vt muff -T show
192.168.103.0/24
Cleared: Mon Aug 8 19:40:17 2011
!192.168.103.21
Cleared: Mon Aug 8 19:40:17 2011
So cat'ing your negations to the end of the file before load or writing
a tiny script that loads your file, then uses pfctl to apply the
negations would both work.
- P
--
Peter N. M. Hansteen, member of the first RFC 1149 implementation team
http://bsdly.blogspot.com/ http://www.bsdly.net/ http://www.nuug.no/
"Remember to set the evil bit on all malicious network traffic"
delilah spamd[29949]: 85.152.224.147: disconnected after 42673 seconds.
