holm/shorewall_code
1
0
Fork 0
forked from extern/shorewall_code
Code Pull Requests Activity

Add 'logdrop' and 'logreject' commands for dynamic blacklisting with logging

Browse Source 
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3716 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
This commit is contained in:
teastep 2006-03-23 16:47:07 +00:00
parent f0372d9209
commit fd4db81725
2 changed files with 48 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

25
docs/blacklisting_support.xml
View File

@ -15,10 +15,10 @@
</author> </author>
</authorgroup> </authorgroup>
<pubdate>2005-08-28</pubdate> <pubdate>2006-03-23</pubdate>
<copyright> <copyright>
<year>2002-2005</year> <year>2002-2006</year>
<holder>Thomas M. Eastep</holder> <holder>Thomas M. Eastep</holder>
</copyright> </copyright>
@ -191,6 +191,27 @@ ipset -B Blacklist 206.124.146.177 -b SMTP</programlisting>
</listitem> </listitem>
</itemizedlist> </itemizedlist>
<para>If you are running Shorewall 3.2.0 Beta2 or later, there are two
additional commands:</para>
<itemizedlist>
<listitem>
<para>logdrop <emphasis>&lt;ip address list&gt;</emphasis> - causes
packets from the listed IP addresses to be dropped and logged by the
firewall. Logging will occur at the level specified by the
BLACKLIST_LOGLEVEL setting at the last [re]start (logging will be at
the 'info' level if no BLACKLIST_LOGLEVEL was given).</para>
</listitem>
<listitem>
<para>logreject <emphasis>&lt;ip address list&gt;</emphasis> - causes
packets from the listed IP addresses to be rejected and logged by the
firewall. Logging will occur at the level specified by the
BLACKLIST_LOGLEVEL setting at the last [re]start (logging will be at
the 'info' level if no BLACKLIST_LOGLEVEL was given).</para>
</listitem>
</itemizedlist>
<para>Dynamic blacklisting is not dependent on the <para>Dynamic blacklisting is not dependent on the
<quote>blacklist</quote> option in <quote>blacklist</quote> option in
<filename>/etc/shorewall/interfaces</filename>.</para> <filename>/etc/shorewall/interfaces</filename>.</para>

25
docs/starting_and_stopping_shorewall.xml
View File

@ -843,6 +843,18 @@
</listitem> </listitem>
</varlistentry> </varlistentry>
<varlistentry>
<term>logdrop</term>
<listitem>
<para><command>shorewall logdrop &lt;address&gt;
...</command></para>
<para>Causes packets from the specified
&lt;<emphasis>address</emphasis>&gt; to be ignored and logged</para>
</listitem>
</varlistentry>
<varlistentry> <varlistentry>
<term>logwatch</term> <term>logwatch</term>
@ -857,6 +869,19 @@
</listitem> </listitem>
</varlistentry> </varlistentry>
<varlistentry>
<term>logreject</term>
<listitem>
<para><command>shorewall logreject &lt;address&gt;
...</command></para>
<para>Causes packets from the specified
&lt;<emphasis>address</emphasis>&gt; to be rejected and
logged</para>
</listitem>
</varlistentry>
<varlistentry> <varlistentry>
<term>refresh</term> <term>refresh</term>