shorewall-devel December 2011 archive
Main Archive Page > Month Archives  > shorewall-devel archives
shorewall-devel: Re: [Shorewall-devel] Shorewall 4.4.27 Beta 1

Re: [Shorewall-devel] Shorewall 4.4.27 Beta 1

From: Neal Thomsen <skip1952_at_nospam>
Date: Mon Dec 05 2011 - 14:31:59 GMT
To: shorewall-devel@lists.sourceforge.net

I don;t know then

[root@cahp2 thomsen]# cd /etc/shorewall/
[root@cahp2 shorewall]# fgrep DYNAM shorewall.conf
DYNAMIC_BLACKLIST=Yes
[root@cahp2 shorewall]# /sbin/shorewall drop 1.2.3.4
Dynamic blacklisting is not supported in the current Shorewall configuration
[root@cahp2 shorewall]# /sbin/shorewall allow 1.2.3.4
Dynamic blacklisting is not enabled in the current Shorewall configuration

On Mon, Dec 5, 2011 at 9:27 AM, Tom Eastep <teastep@shorewall.net> wrote:

> On Mon, 2011-12-05 at 09:13 -0500, Neal Thomsen wrote:
> > Has the dynamic blacklisting gone away?
> >
> > I have DYNAMIC_BLACKLIST=Yes in shorewall.conf
> > but when I enter
> >
> > /sbin/shorewall drop ip_address
> >
> > i get this:
> >
> > Dynamic blacklisting is not supported in the current Shorewall
> > configuration
>
> Works for me:
>
> root@gateway:/etc/shorewall# fgrep DYNAM shorewall.conf
> DYNAMIC_BLACKLIST=Yes
> root@gateway:/etc/shorewall# shorewall drop 1.2.3.4
> 1.2.3.4 Dropped
> root@gateway:/etc/shorewall# shorewall allow 1.2.3.4
> 1.2.3.4 Allowed
> root@gateway:/etc/shorewall#
>
> -Tom
> --
> Tom Eastep \ When I die, I want to go like my Grandfather who
> Shoreline, \ died peacefully in his sleep. Not screaming like
> Washington, USA \ all of the passengers in his car
> http://shorewall.net \________________________________________________
>
>
>
>
> ------------------------------------------------------------------------------
> All the data continuously generated in your IT infrastructure
> contains a definitive record of customers, application performance,
> security threats, fraudulent activity, and more. Splunk takes this
> data and makes sense of it. IT sense. And common sense.
> http://p.sf.net/sfu/splunk-novd2d
> _______________________________________________
> Shorewall-devel mailing list
> Shorewall-devel@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/shorewall-devel
>
>

-- (\(\ That's odd. That's very odd. (^.^) Wouldn't you say that's very odd? (")") -------- When the going gets weird, the weird turn pro.

------------------------------------------------------------------------------
All the data continuously generated in your IT infrastructure
contains a definitive record of customers, application performance,
security threats, fraudulent activity, and more. Splunk takes this
data and makes sense of it. IT sense. And common sense.
http://p.sf.net/sfu/splunk-novd2d

_______________________________________________
Shorewall-devel mailing list
Shorewall-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-devel