Tom Eastep
2017-05-22 15:05:54 UTC
Hi,
I have some questions regarding blacklisting : 1. How to correctly
increase maxelem for SW_DB4 ipset ?
You must create the ipset yourself.I have some questions regarding blacklisting : 1. How to correctly
increase maxelem for SW_DB4 ipset ?
2. Which is the maximum number of elements in SW_DB4 ipset that can
be set ?
I don't know -- that limit is set by the ipset implementation, notbe set ?
Shorewall.
3. How to block in raw table in prerouting chain addresses from
SW_DB4 ?
In /etc/shorewall/conntrack:SW_DB4 ?
DROP:P +SW_DB4 -
If you do that, be sure to set BLACKLIST=NEW in shorewall.conf.
- -Tom
- --
Tom Eastep \ Q: What do you get when you cross a mobster with
Shoreline, \ an international standard?
Washington, USA \ A: Someone who makes you an offer you can't
http://shorewall.org \ understand
\_______________________________________________