-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
On 06/08/2017 04:05 AM, Vieri Di Paola via Shorewall-users wrote:
> ________________________________ From: Tom Eastep
> <[email protected]>
>>
>> That rule doesn't indicate that the packet is being dropped --
>> it
>
>> simply means that it is being logged and counted.
>
> I'm asking because I created a custom Action (DROPBL) as you
> previously suggested in another thread so that I could Drop and
> insert the src IP address in an ipset if a client tried to connect
> to an "unpublished" port.
>
> My custom DROP action simply contains the following instruction at
> the bottom:
>
> ADD(POL_BL:src)
But you are invoking the action with a log level. So every rule in the
action body is generating log messages when matched. Since the first
entry in the action body is simply
DROP - -
every packet that is passed to the action produces a message.
- -Yom
- --
Tom Eastep \ Q: What do you get when you cross a mobster with
Shoreline, \ an international standard?
Washington, USA \ A: Someone who makes you an offer you can't
http://shorewall.org \ understand
\_______________________________________________
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
Comment: GPGTools - http://gpgtools.org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=F1gm
-----END PGP SIGNATURE-----
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
