From: Cowles, S. <Steve@SteveCowles.com> - 2002-08-31 13:32:09
|
> -----Original Message----- > From: Mainul Islam > Sent: Saturday, August 31, 2002 4:51 AM > To: sho...@sh... > Subject: [Shorewall-users] blacklist isnt working > > Hi tom > > i am using shorewall-1.3-0 as per the maillist i have added > something to the following files in > /etc/shorewall/params > BLACKLIST=`cat /etc/shorewall/blacklist` > BLACKLIST=`echo eth0:$BLACKLIST | sed 's/ /,eth0:/g'` > > in /etc/shorewall/hosts > > bl eth0:$BLACKLIST > > in /etc/shorewall/policy > bl all DROP - > > in /etc/shorewall/zones > bl Blacklist List of black-listed hosts/nets > Hmmm!!! I use shorewalls' blacklist feature at this end and do not have to edit any of the config files you mention above. But then, I'm not using release 1.3-0 > after changing these files when i am restarting firewall i > am getting error messages > > Warning: wierd character in interface `eth0:eth0' (No > aliases, :, ! or *). > iptables v1.2.5: host/network `eth0:#' not found > Try `iptables -h' or 'iptables --help' for more information. > > and shorwall is terminating > > would you please suggest me for overcome this problem > > waiting for your quick response Consider taking this opportunity to upgrade to the latest version of shorewall and follow the shorewall documentation regarding how to implement the blacklist feature. Specifically: http://www.shorewall.net/blacklisting_support.htm http://www.shorewall.net/Documentation.htm#Blacklist Steve Cowles |