On 09/16/2010 03:23 PM, Steven Jan Springl wrote: > > I was thinking of automatically loading any IP addresses that are specified > in > the first column into an ipset, but with the existing ipset implementation > it's probably not worth the effort.
I don't think that it is. Note, though, since ADD and DEL rules are now supported in /etc/shorewall/rules, it is possible to write rules that add an IP address to a blacklisting ipset before dropping or rejecting the connection request. I could add to my list of things to do to allow ADD and DEL in Actions; that would make such multi-step operations involving ADD or DEL more efficient. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Start uncovering the many advantages of virtual appliances and start using them to simplify application deployment and accelerate your shift to cloud computing. http://p.sf.net/sfu/novell-sfdev2dev
_______________________________________________ Shorewall-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-devel
