Maybe I don't understand your question, but Shorewall can be configured to
populate an ipset:
?COMMENT rdp
ADD(+shorewall-ip:src) inetfw tcp 3389# rdp
Externally, you can populate a set with the ipset command. fail2ban can do
this. I have
my DHCP set to add
Dear sirs,
I need to block a huge list of IP addresses (about 7,000).
As I didn't see any comprehensive example about creating and maintaining
IPSETs inside Shorewall (except add/remove entries:
http://shorewall.org/ipsets.html). Is it true that all IPSET creation and
feeding those 7000 address
