mirror of
https://gitlab.com/shorewall/code.git
synced 2024-12-25 15:48:56 +01:00
Add caution to the Events example on blacklisting
Signed-off-by: Tom Eastep <teastep@shorewall.net>
This commit is contained in:
parent
8c27b027fc
commit
04c2a88d74
@ -541,6 +541,14 @@ SetEvent(SSH,ACCEPT,src)</programlisting>
|
||||
<programlisting>#ACTION SOURCE DEST PROTO DEST
|
||||
# PORT(S)
|
||||
SSHLIMIT net $FW tcp 22 </programlisting>
|
||||
|
||||
<caution>
|
||||
<para>The technique demonstrated in this example is not self-cleaning.
|
||||
The SSH_COUNTER event can become full with blackisted addresses that
|
||||
never attempt to connect again. When that happens and a new entry is
|
||||
added via SetEvent, the least recently seen address in the table is
|
||||
deleted.</para>
|
||||
</caution>
|
||||
</section>
|
||||
|
||||
<section>
|
||||
|
Loading…
Reference in New Issue
Block a user