On 9/9/2015 9:13 PM, johnny bowen wrote: > Why was BLACKLISTNEWONLY eliminated? > Is there a substitution? (besides other tools like conntrack) > > It was handy with things like fail2ban where you might just do a > shorewall drop on an established/related connection.
As described at http://www.shorewall.net/Shorewall-5.html, BLACKLISTNEWONLY is superseded by BLACKLIST and 'shorewall update' will convert BLACKLISTNEWONLY to the equivalent BLACKLIST specification. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Monitor Your Dynamic Infrastructure at Any Scale With Datadog! Get real-time metrics from all of your servers, apps and tools in one place. SourceForge users - Click here to start your Free Trial of Datadog now! http://pubads.g.doubleclick.net/gampad/clk?id=241902991&iu=/4140
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
