On Thursday 16 September 2010 23:15:11 Tom Eastep wrote: > On 9/16/10 3:07 PM, Steven Jan Springl wrote: > > Tom > > > > Would it be possible/practical to implement blacklisting using ipset, if > > it is available. > > This should enable people to have a large number of entries in their > > blacklist without causing performance issues. > > Steven, > > It's already supported. Just put +<ipset name> in the first column. > > Regards, > -Tom
Tom I was thinking of automatically loading any IP addresses that are specified in the first column into an ipset, but with the existing ipset implementation it's probably not worth the effort. Steven. ------------------------------------------------------------------------------ Start uncovering the many advantages of virtual appliances and start using them to simplify application deployment and accelerate your shift to cloud computing. http://p.sf.net/sfu/novell-sfdev2dev _______________________________________________ Shorewall-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-devel
