Why was BLACKLISTNEWONLY eliminated?
Is there a substitution? (besides other tools like conntrack)
It was handy with things like fail2ban where you might just do a shorewall
drop on an established/related connection.
On Wed, Sep 9, 2015 at 5:54 PM, Tom Eastep wrote:
> Shorewall 5.0.0 Beta 1 is
Shorewall 5.0.0 Beta 1 is now available for testing. You can read about
Shorewall 5 at http://www.shorewall.org/Shorewall-5.html.
Problems Corrected:
1) This release includes defect repair up through Shorewall 4.6.13.
New Features:
1) To make the command names more accurately reflect what the
>>> From: Tom Eastep
>>>
>>>
>>> You can nevertheless do what you want by adding a provider for interface
>>> enp4s1. Make it the 'primary' provider (if your version of Shorewall
>>> doesn't support the 'primary' option, use 'balance'). Then use the
>>> mangle rules that I suggested to balance tr
On 9/9/2015 1:50 AM, Vieri Di Paola wrote:
>
>
>> - Original Message -
>> From: Tom Eastep
>>
>>
>> You can nevertheless do what you want by adding a provider for interface
>> enp4s1. Make it the 'primary' provider (if your version of Shorewall
>> doesn't support the 'primary' option, us
> - Original Message -
> From: Tom Eastep
>
>
> You can nevertheless do what you want by adding a provider for interface
> enp4s1. Make it the 'primary' provider (if your version of Shorewall
> doesn't support the 'primary' option, use 'balance'). Then use the
> mangle rules that I sug
