[Shorewall-users] Blacklist

Pieter Ennes pieter@bankastraat.dhs.org
Mon, 7 Jan 2002 22:39:05 +0100 (CET)


On Mon, 7 Jan 2002, Tom Eastep wrote:

> As it turns out, I don't think that it is necessary for Shorewall to have
> explicit blacklist support since it can be implemented nicely already.

I agree.

> In /etc/shorewall/hosts:
>
> bl	eth0:ip1,ip2,...

This doesn't work in my setup (1.2.0), eth0:ip1,eth0:ip2,... does
however...

> 	BLACKLIST='cat /etc/shorewall/blacklist'
> 	BLACKLIST='echo $BLACKLIST | sed 's/ /,/g'`

Ah, this is great, just what i needed!

Thanks, Pieter.

-- 
 Pas op de muonen!