-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 On 05/22/2017 07:14 AM, [email protected] wrote: > Hi, > > I have some questions regarding blacklisting : 1. How to correctly > increase maxelem for SW_DB4 ipset ?
You must create the ipset yourself. > 2. Which is the maximum number of elements in SW_DB4 ipset that can > be set ? I don't know -- that limit is set by the ipset implementation, not Shorewall. > 3. How to block in raw table in prerouting chain addresses from > SW_DB4 ? > In /etc/shorewall/conntrack: DROP:P +SW_DB4 - If you do that, be sure to set BLACKLIST=NEW in shorewall.conf. - -Tom - -- Tom Eastep \ Q: What do you get when you cross a mobster with Shoreline, \ an international standard? Washington, USA \ A: Someone who makes you an offer you can't http://shorewall.org \ understand \_______________________________________________ -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 Comment: GPGTools - http://gpgtools.org iQIcBAEBCAAGBQJZIv5SAAoJEJbms/JCOk0Q2Y8P/i0ltCv90kIfXSqeyK9rcU5s Jl/GlI+YcDM4atQ+Q354XYrD1IdRPRiCM99cZtOCET6Ccl9LmaWhKQouIj7NMvT8 c2gYyOLyVne9cfoZ1nMjAnPqANeDP+2uNYSfUzQ6edYt0KmmjWyQVyJ9YY0O6STU 6ByY7Wa9hjOmqvdBx91FEJW+I6kBd1JccBQDp/vA1+OSpQZA4zUa5Hk6q7rwCY9e W2GCv3TX82d38esZmBK1A/pRCU6XiafF75X+18zWPSyFhqyyEjK98qTFjFUa5plr 1sqTTV8ZJM7j8RG8MYnWlE1Iw/9sH/1wMht4LjoihxVooHzA9c9TtjgW+FVrZFaU O7swV0CCEKDb2ldJ5w4wTsS1hnfoSSdFzF1VUAqh4NHazmfBuWxHj0dEOg79FHjo /H9DjPTCFW/l3vSuiSrlcjivq1/x9OepdoxggXdcwcnCkNrFTrEbNYl2vaudDc5Q RsWPUhVGL/7VOM4cDV8VW6LU1RlFOd+hFV5BfUxM8xkphePpymid/x5UdWKQR5la Ifqd1bD9sg01T0vUcz+kc5OrSPqG/HDMau8VDEcW5irDRreuVCUPaKdTUH+DBBLZ VPD+UKHnGlCveEDdR9ti1qKmqHA51RwNsMKdNuWFM1hrGxJeRAwBromOJwGIWeiE KPuxCAbKLIWk2gImbbUX =ctcM -----END PGP SIGNATURE----- ------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
