From: Tom E. <te...@sh...> - 2002-05-24 18:21:46
|
It's not already available and it is unlikely to be added given that there are obvious workarounds. For example, if your black list is made up of several files (f1, f2, ... fn), you can simply "cat f1 f2 f3 ... fn > /etc/shorewall/blacklist". In the next RC of 1.3 (or Final if no more RCs), I'll include the ability to have a /etc/shorewall/refresh file that will be sourced prior to refreshing the blacklist. This will allow the above command to be executed prior to reloading the blackl st chain. For handling "start" and "restart", you can include the command in /etc/shorewall/init. If you want to modify your firewall script to run /etc/shorewall/restart before that, just add "run_user_exit refresh" to the "refresh_firewall" function. Just be sure to add the command before the existing "refresh_blacklist" call. -Tom ----- Original Message ----- From: "bradw" <ti...@st...> To: <sho...@sh...> Sent: Friday, May 24, 2002 7:53 AM Subject: [Shorewall-users] blacklist question > I'm wondering if is is posable to do something like > > . /etc/shorewall/somefile > > from inside the blacklist file is a future release. > is is this sort of thing already available and I'm just doing it wrong? > > -- > Brad Wyman |\ _,,,---,,_ > br...@st... /,`.-'`' -. ;-;;,_ > Network Admin |,4- ) )-,_. ,\ ( `'-' > Sta-Care, Inc. '---''(_/--' `-'_) > > PGP Fingerprint: 8B1E E12F 3982 0D54 E01C DFD3 898B 6CA3 ED6F 3E56 > > > _______________________________________________ > Shorewall-users mailing list > Sho...@sh... > http://www.shorewall.net/mailman/listinfo/shorewall-users > > |