On 4/25/2015 3:08 AM, Gerhard Wiesinger wrote: > On 08.04.2015 13:07, Gerhard Wiesinger wrote: >> Hello, >> >> Are iptraps supported or planned to support it? >> See:https://github.com/ktsaou/firehol/wiki/Working-with-traps >> >> Thank you. >> >> Ciao, >> Gerhard >> > > Any ideas how to use dynamic adding to ipsets with shorewall (without > perl modules)? > > Like iptrap function in: > https://github.com/ktsaou/firehol/blob/master/sbin/firehol.in > iptables_both -t ${t} -A "${chain}" -j SET --add-set > ${ipset} ${type} --exist || return 1 > iptables_both -t ${t} -A "${chain}" -j SET --add-set > ${ipset} ${type} --exist --timeout ${timeout} || return 1 >
In the filter table, you can use the ADD action in the rules file. For the other tables, use the IPTABLES action in the appropriate file. -Tom -- Tom Tom Eastep http://www.shorewall.net
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ One dashboard for servers and applications across Physical-Virtual-Cloud Widest out-of-the-box monitoring support with 50+ applications Performance metrics, stats and reports that give you Actionable Insights Deep dive visibility with transaction tracing using APM Insight. http://ad.doubleclick.net/ddm/clk/290420510;117567292;y
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
