On 7/24/2020 3:43 AM, jack wrote: > Hi Bob > Thanks for the reply. > > > Am I right in thinking I put the accept line in above the DROP line > and it will then accept the email but if it's not email it will then > drop everything as before? > > like this: > ACCEPT net:x.x.x.x-y.y.y.y all tcp 993,995 > DROP net:x.x.x.x-y.y.y.y all
Yes > > As for using the blrules file - I first set it up a long > time ago and this just seemed the easiest way for me to > manage it on a daily basis as I do this manually. I do > find the shorewall docs a bit confusing. (Too much info not > targeted at specific solutions I think is my problem) > I don't have a complex setup - just the one remote server I > manage with a few domains but no local networks etc. > > Is there a better way to simply add or delete IPs/ranges? > Well, the usual method is to ACCEPT everything you need to in 'rules' and then let the net->fw DROP policy take care of the rest. But maybe I don't understand your particular requirements. -Tom -- Tom Eastep \ Q: What do you get when you cross a mobster Shoreline, \ with an international standard? Washington, USA \ A: Someone who makes you an offer you http://shorewall.org \ can't understand \________________________________________
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
