On Thu, 2011-09-29 at 17:03 +0100, Mr Dash Four wrote: > > Adding a USER/GROUP column to the blacklist file is fairly easy, > > although it requires that there now be three blacklist chains: blacklst, > > blackfwd and blackout. > Yeah, I figured that out yesterday even though I am not using > bridges/have forwarded traffic it still makes sense to create such a > chain. Can I specify the zone(s) to which that whitelist applies (vpn in > my example above) or is it just user id/owner?
Just userid/owner at this point. To allow zone names, the implementation of blacklisting will have to change rather dramatically (no blacklist chains at all with the possible exception of 'blacklog'). > > If so, is this feature only applicable to whitelists or does it include > the blacklists now as well (in other words can I specify "+blacklist - - > - src,dst,vpn")? Again, zones are not supported. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: This is a digitally signed message part
------------------------------------------------------------------------------ All the data continuously generated in your IT infrastructure contains a definitive record of customers, application performance, security threats, fraudulent activity and more. Splunk takes this data and makes sense of it. Business sense. IT sense. Common sense. http://p.sf.net/sfu/splunk-d2dcopy1
_______________________________________________ Shorewall-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-devel
