holm/shorewall_code
1
0
Fork 0
forked from extern/shorewall_code
Code Pull Requests Activity

Update the description of BLACKLISTNEWONLY to match the implementation.

Browse Source 
Signed-off-by: Tom Eastep <teastep@shorewall.net>
This commit is contained in:
Tom Eastep 2013-01-22 09:11:15 -08:00
parent f61f5a8183
commit 17eae4adee
2 changed files with 12 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
Shorewall/manpages/shorewall.conf.xml
View File

@ -424,10 +424,11 @@
<listitem> <listitem>
<para>When set to <emphasis role="bold">Yes</emphasis> or <emphasis <para>When set to <emphasis role="bold">Yes</emphasis> or <emphasis
role="bold">yes</emphasis>, blacklists are only consulted for new role="bold">yes</emphasis>, blacklists are only consulted for new
connections. That includes entries in the <ulink connections and for packets in the INVALID connection state (such as
url="???">shorewall-blrules</ulink> (5) file and in the BLACKLIST TCP SYN,ACK when there has been no corresponding SYN). That includes
section of <ulink url="shorewall-rules.html">shorewall-rules</ulink> entries in the <ulink url="???">shorewall-blrules</ulink> (5) file
(5).</para> and in the BLACKLIST section of <ulink
url="shorewall-rules.html">shorewall-rules</ulink> (5).</para>
<para>When set to <emphasis role="bold">No</emphasis> or <emphasis <para>When set to <emphasis role="bold">No</emphasis> or <emphasis
role="bold">no</emphasis>, blacklists are consulted for every packet role="bold">no</emphasis>, blacklists are consulted for every packet

10
Shorewall6/manpages/shorewall6.conf.xml
View File

@ -356,9 +356,13 @@
<listitem> <listitem>
<para>When set to <emphasis role="bold">Yes</emphasis> or <emphasis <para>When set to <emphasis role="bold">Yes</emphasis> or <emphasis
role="bold">yes</emphasis>, blacklists are only consulted for new role="bold">yes</emphasis>, blacklists are only consulted for new
connections. This includes entries in the <ulink connections, for packets in the INVALID connection state (such as a
url="???">shorewall-blrules</ulink> (5) file and in the BLACKLIST TCP SYN,ACK when there has been no corresponding SYN), and for
section of <ulink packets that are UNTRACKED due to entries in <ulink
url="shorewall6-conntrack.html">shorewall6-conntrack</ulink>(5).
This includes entries in the <ulink
url="shorewall6-blrules.html">shorewall6-blrules</ulink> (5) file
and in the BLACKLIST section of <ulink
url="shorewall6-rules.html">shorewall6-rules</ulink> (5).</para> url="shorewall6-rules.html">shorewall6-rules</ulink> (5).</para>
<para>When set to <emphasis role="bold">No</emphasis> or <emphasis <para>When set to <emphasis role="bold">No</emphasis> or <emphasis