Thank you Tom for the explanation and your patience!!!:) Much appretiated.
-Matt On 10 Mar 2014 at 8:44, Tom Eastep wrote: > On 3/10/2014 8:21 AM, matt darfeuille wrote: > > > Is there any reason why the stoppedrules file can not be used with > > ADMINISABSENTMINDED=No? > > > > The stoppedrules file assumes a stateful firewall and > ADMINISABSENTMINDED=No creates a stateless iptables configuration. If > you want to kill all active connections at 'stop' while using > ADMINISABSENTMINDED=Yes, then install the conntrack utility and include > this command in your /etc/shorewall/stopped file: > > conntrack -F > > That is explained in the 4.5.21.7 shorewall.conf manpage entry for > ADMINISABSENTMINDED. > > -Tom > -- > Tom Eastep \ When I die, I want to go like my Grandfather who > Shoreline, \ died peacefully in his sleep. Not screaming like > Washington, USA \ all of the passengers in his car > http://shorewall.net \________________________________________________ > > ------------------------------------------------------------------------------ Learn Graph Databases - Download FREE O'Reilly Book "Graph Databases" is the definitive new guide to graph databases and their applications. Written by three acclaimed leaders in the field, this first edition is now available. Download your free book today! http://p.sf.net/sfu/13534_NeoTech _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
