BTW, is there anyway I can specify my 'eth0:0' in Shorewall black-list or is
there any other way to achieve blacklisting on that interface?
No.
The real point is that "eth0:0" is *not* an interface. It is a label for an ip address on an interface. See the introductory section of http://shorewall.net/Shorewall_and_Aliased_Interfaces.html
-Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ [EMAIL PROTECTED]
------------------------------------------------------- This SF.Net email is sponsored by: IBM Linux Tutorials Free Linux tutorial presented by Daniel Robbins, President and CEO of GenToo technologies. Learn everything from fundamentals to system administration.http://ads.osdn.com/?ad_id=1470&alloc_id=3638&op=click ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html