On 2/11/2020 3:48 PM, Matt Darfeuille wrote: > On 2/11/2020 3:35 PM, Vieri Di Paola wrote: >> Hi, >> >> I've blacklisted some kernel modules so they are not autoloaded at >> boot time (/etc/modprobe.d). >> >> I've also blacklisted them in Shorewall. >> >> # grep DONT_LOAD /etc/shorewall/shorewall.conf >> DONT_LOAD=xt_geoip,xt_iface,xt_TARPIT >> >> However, the geoip module is still getting loaded. >> >> # lsmod | grep xt_geoip >> xt_geoip 16384 0 >> >> Surely I could uninstall these modules from the system, but I'd rather not. >> >> How do I make sure xt_geoip is not loaded by Shorewall? >> > > If the other modules are not loaded and 'AUTOHELPERS' is set to 'No', > are you sure that Shorewall is the culprit? >
See also: https://shorewall.org/manpages/shorewall-modules.html https://shorewall.org/Helpers.html -Matt -- Matt Darfeuille _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
