On 9/15/10 2:13 PM, Mr Dash Four wrote: > >> Luckily, with your one-interface, two-zone configuration, you won't have >> an opportunity to use the confusing blacklist=2 setting. It is designed >> for internal interfaces, and given that you don't have any internal >> interfaces, it shouldn't be a problem for you. >> > And you know this how exactly? > > The fact that I am testing on "one-interface two-zone" machine should > not matter one bit. Perhaps if you do not like my configuration or my > testing methods you should pick up somebody else with more suitable > configuration that you are happy with?
I have no problem with either your configuration or your testing methods, although I do find your "brick in the face" style of raising issues and pointing out perceived shortcomings to be rather tiresome. I don't want to delay 4.4.13 any longer with this blacklisting issue. So what I'm going to do is to return Shorewall blacklisting to its 4.4.11 state (no OPTIONS column in the blacklist files) and when I find the time and energy to tackle this problem again, I'll take all of your objections and suggestions into account. Regards, -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Start uncovering the many advantages of virtual appliances and start using them to simplify application deployment and accelerate your shift to cloud computing. http://p.sf.net/sfu/novell-sfdev2dev
_______________________________________________ Shorewall-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-devel
