In an effort to limit DNS hits I added this to the rules file: AutoBL(NS1,30,20,-,1200,DROP,err) net dmz:192.168.3.XXX udp 53 ## Auto Blacklist NS1 AutoBL(NS2,30,20,-,1200,DROP,err) net dmz:192.168.3.XXY udp 53 ## Auto Blacklist NS2 AutoBL(NS3,30,20,-,1200,DROP,err) net dmz:192.168.3.XXZ udp 53 ## Auto Blacklist NS3 AutoBL(NS4,30,20,-,1200,DROP,err) net dmz:192.168.3.XXA udp 53 ## Auto Blacklist NS4
I also set up the DNS servers for no recursion and rate-limit of 5. This gets me to reject most of the packets but I would like to stop them at the firewall. It works and does what it is supposed to but I want to limit or eliminate the AutoBL and the %AutoBL entries in the shorewall log. I tried : AutoBL(NS1,30,20,-,1200,DROP,err):none net dmz:192.168.3.XXX udp 53 ## Auto Blacklist NS1 but this does not do anything. Any help with syntax would be appreciated. Seth Bardash Integrated Solutions and Systems 1510 Old North Gate Road Colorado Springs, CO 80921 719-495-5866 Shop 719-337-4779 Cell http://www2.iss-1.com Failure can not cope with knowledge and perseverance! ----- No virus found in this message. Checked by AVG - www.avg.com Version: 2015.0.6125 / Virus Database: 4392/10472 - Release Date: 08/20/15 ------------------------------------------------------------------------------ _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
