I finally got around to putting the finishing touches on this project. The original goal was to upgrade Shorewall on Bering to a more recent version so as to be able to use dynamic blacklisting to control what hours my children can access the Internet from their PCs. I was able to get Shorewall 1.3.5 up and running with minimal effort and some great help from Tom and others on the list. I still can't get 1.3.6 to work but admittedly I gave up after I got 1.3.5 to work since it solves my need for dynamic blacklisting. For the record, I followed the upgrade info listed in Jacques Bering installation guide and the upgrade/ errata page for Shorewall.
Next I needed to get crontab entrys working that would turn access on and off for a particular IP address at the proper time. Thanks to Charles and Cass on this one. I went with Charles suggestion to use a "wrapper script" I don't know if I really needed it but I had difficulty getting the Shorewall commands to run directly from the crontab file so I created /etc/blacklist.start which contained the line: /sbin/shorewall reject 192.168.1.5 And /etc/blacklist.stop which contained the line: /sbin/shorewall allow 192.168.1.5 Next I added these lines to /etc/crontab to call the two scipts at the proper time: # Turn Internet access off for blacklisted hosts at 10:30 pm # 30 22 * * 0,1,2,3,4 root /etc/blacklist.start # Turn Internet access on for blacklisted hosts at 7:00am # 30 7 * * 1,2,3,4,5 root /etc/blacklist.stop Dont forget to chmod the scripts to give root permission to execute them. The result is that it works like a charm. And I can easily add new IP's as my younger children start to access the net without having to restart cron just by editing the scripts. Thanks again to all who weighed in in my queries. Kory Krofft ------------------------------------------------------- This sf.net email is sponsored by: OSDN - Tired of that same old cell phone? Get a new here for FREE! https://www.inphonic.com/r.asp?r=sourceforge1&refcode1=vs3390 ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
