Re: [Shorewall-users] Syntax?

Fri, 21 Aug 2015 13:43:06 -0700 


On 08/21/2015 01:20 PM, Seth Bardash wrote:
>  -----Original Message-----
> From: Tom Eastep [mailto:[email protected]] 
> Sent: Friday, August 21, 2015 2:12 PM
> To: [email protected]
> Subject: Re: [Shorewall-users] Syntax?
> 
>>
>> Any help with syntax would be appreciated.
> 
> AutoBL(NS1,30,20,-,1200,DROP,none) ...
> 
> This gives an error:
> 
> Compiling /usr/share/shorewall/action.AutoBL for chain AutoBL...
> Perl Script Returned False /usr/share/shorewall/action.AutoBL
> (line 37)
>       from /etc/shorewall/rules (line 343)
> 
> That is why I used err instead.
> 
> Also note that if 30 is used in the hitcount field the program
> abort on resart- ie:
> 
>  AutoBL(NS1,30,30,-,1200,DROP,err):none
> 
> or a time of 3600 also aborts the restart.
> 
> Running 
> [root@fw20m shorewall]# shorewall version
> 4.6.8

The attached patch will allow you to specify 'none' in the last
parameter. I'll look at the other issues.

-Tom
-- 
Tom Eastep        \ When I die, I want to go like my Grandfather who
Shoreline,         \ died peacefully in his sleep. Not screaming like
Washington, USA     \ all of the passengers in his car
http://shorewall.net \________________________________________________

diff --git a/Shorewall/action.AutoBL b/Shorewall/action.AutoBL
index 93bac6f..043dcb1 100644
--- a/Shorewall/action.AutoBL
+++ b/Shorewall/action.AutoBL
@@ -33,7 +33,7 @@ fatal_error "Invalid successive interval ($succesive) passed to AutoBL" unless $
 fatal_error "Invalid packet count ($count) passed to AutoBL"            unless $count =~ /^\d+$/ && $count;
 fatal_error "Invalid blacklist time ($bltime) passed to AutoBL"         unless $bltime =~ /^\d+$/ && $bltime;
 validate_level( $level );
-
+1;
 ?end perl
 ###############################################################################
 #TARGET		SOURCE	DEST	PROTO	DPORT	SPORT

Attachment: signature.asc
Description: OpenPGP digital signature

------------------------------------------------------------------------------

_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users

Reply via email to