On 1/5/11 4:59 PM, Steven Jan Springl wrote: > Tom > > In the attached config. rule: > > Limit(ssh,5,10):warn:garbage lan tst tcp 22 > > generates the following iptables rule: > > -A %Limit% garbage-j LOG --log-level 4 --log-prefix "Shorewall:ssh:DROP:" > > which produces the following message: > > Bad argument `garbage-j'
Thanks, Steven The attached patch seems to correct the problem. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
diff --git a/Shorewall/Perl/Shorewall/Rules.pm
b/Shorewall/Perl/Shorewall/Rules.pm
index 122b49b..07d2113 100644
--- a/Shorewall/Perl/Shorewall/Rules.pm
+++ b/Shorewall/Perl/Shorewall/Rules.pm
@@ -609,7 +609,7 @@ sub Limit( $$$$ ) {
if ( $level ne '' ) {
my $xchainref = new_chain 'filter' , "$chainref->{name}%";
- log_rule_limit $level, $xchainref, $param[0], 'DROP', $tag, '', 'add',
'';
+ log_rule_limit $level, $xchainref, $param[0], 'DROP', '', $tag, 'add',
'';
add_rule $xchainref, '-j DROP';
add_jump $chainref, $xchainref, 0, "-m recent --name $set --update
--seconds $param[2] --hitcount $count ";
} else {
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Learn how Oracle Real Application Clusters (RAC) One Node allows customers to consolidate database storage, standardize their database environment, and, should the need arise, upgrade to a full multi-node Oracle RAC database without downtime or disruption http://p.sf.net/sfu/oracle-sfdevnl
_______________________________________________ Shorewall-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-devel
