Andrew Suffield wrote: > I've been playing with it, in an attempt to generate > similar-but-more-flexible behaviour for the SSHKnock action described > in http://www.shorewall.net/PortKnocking.html (since that's a familiar > example that should showcase how this feature can be used). > > The goal is something like: > > PERL Knock 'net', 'loc:192.168.1.5', {port => 22, knocker => 1600, trap => > [1599, 1601]}; > > where the 'net' and 'loc:192.168.1.5' arguments are handed off to > shorewall for normal processing, while the perl function takes care of > the rest.
Andrew, With the patches that I've posted, this should now be possible. When you get it working, please post it here and I'll include it in a new article that describes "Manual Chains". -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ [EMAIL PROTECTED] PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/
_______________________________________________ Shorewall-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-devel
