> So that crooks sending forged packets don't bypass your blacklist. > Right, good thinking! I just read the man page for that option - this must have been left unchecked since I first started using shorewall, because I am going to set it as Yes - blacklisting to me make sense on new connections only, otherwise it will slow things down, particularly on low-end machines (and I have plenty of those knocking around). Thanks for that!
------------------------------------------------------------------------------ vRanger cuts backup time in half-while increasing security. With the market-leading solution for virtual backup and recovery, you get blazing-fast, flexible, and affordable data protection. Download your free trial now. http://p.sf.net/sfu/quest-d2dcopy1 _______________________________________________ Shorewall-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-devel
