On Mon, 2011-12-05 at 09:13 -0500, Neal Thomsen wrote: > Has the dynamic blacklisting gone away? > > I have DYNAMIC_BLACKLIST=Yes in shorewall.conf > but when I enter > > /sbin/shorewall drop ip_address > > i get this: > > Dynamic blacklisting is not supported in the current Shorewall > configuration
Works for me: root@gateway:/etc/shorewall# fgrep DYNAM shorewall.conf DYNAMIC_BLACKLIST=Yes root@gateway:/etc/shorewall# shorewall drop 1.2.3.4 1.2.3.4 Dropped root@gateway:/etc/shorewall# shorewall allow 1.2.3.4 1.2.3.4 Allowed root@gateway:/etc/shorewall# -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: This is a digitally signed message part
------------------------------------------------------------------------------ All the data continuously generated in your IT infrastructure contains a definitive record of customers, application performance, security threats, fraudulent activity, and more. Splunk takes this data and makes sense of it. IT sense. And common sense. http://p.sf.net/sfu/splunk-novd2d
_______________________________________________ Shorewall-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-devel
