Hi Folks Am 21.12.2017 um 18:54 schrieb Tom Eastep: > Bill Shirley has contributed a PHP program that will populate an IPSET > from DNS. The program is available at: > > http://www.shorewall.org/pub/shorewall/contrib/DNSLookup/ > ftp://ftp.shorewall.org/pub/shorewall/contrib/DNSLookup/
> > The program arguments are documented in the program source. > > It is suggested that the program be run periodically via cron. The > program accepts an argument that sets the timeout value for entries in > the ipset. In most applications, setting the timeout to be considerably > longer than the DNS entries' TTL is recommended. That way, sites that > specify a short TTL and advertise a large number of addresses with short > TTLs in round-robin fashon will still fully populate the ipset over time. As nice as this may be, PHP is a resource hog and might not run or even be available on small embedded systems. Is it necessary to use PHP for such functionality? Already the move to use Perl for the compiler results in quite some bloatware, I understand the reasons though, as the shell is really qite limited. Could the same be implemented in our Perl environment? My 0.02, not worth that much chers ET
smime.p7s
Description: S/MIME Cryptographic Signature
------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
