On 7/18/10 2:53 PM, Alexander Maringer wrote: > Ah, ok, thanks ... and now I have an idea .... Could it be ... that if > the attacker does not start a new connection, he is not dropped, until > he starts a new connection because the connection already exists? > > So I have to kill all existing connections?
Yes -- unless you configure BLACKLISTNEWONLY=No in shorewall.conf, adding an IP address to the blacklist does not affect existing connections. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ This SF.net email is sponsored by Sprint What will you do first with EVO, the first 4G phone? Visit sprint.com/first -- http://p.sf.net/sfu/sprint-com-first
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
