Hi, I made a wiki to present a rather simple perl script I made which allows to use ipset with Shorewall to dynamically filter access by IP (and I hope later by port ). The great benefit is that restarting/ reloading Shorewall is faster and iptables rules are lesser.
I use essentially bindings in ipset (ipset -B) As basis, I have used a kerneled-Linux > 2.6.18 and these packages 1. perl 5.8.8 2. Shorewall 3.2.7 3. iptables 1.3.5 Have a look at : http://iballo.wikispaces.com/ipset_shorewall Thanks for your comments and contributions ... ------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/ _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
