Blacklisting Support

Beginning with version 1.2.2, Shorewall supports IP blacklisting. Shorewall blacklisting support has the following configuration parameters:

bulletYou specify whether you want packets from blacklisted hosts dropped or rejected using the BLACKLIST_DISPOSITION setting in /etc/shorewall/shorewall.conf
bulletYou specify whether you want packets from blacklisted hosts logged and at what syslog level using the BLACKLIST_LOGLEVEL setting in /etc/shorewall/shorewall.conf
bulletYou list the IP addresses/subnets that you wish to blacklist in /etc/shorewall/blacklist
bulletYou specify the interfaces whose incoming packets you want checked against the blacklist using the "blacklist" option in /etc/shorewall/interfaces.
bulletThe black list is refreshed from /etc/shorewall/blacklist by the "shorewall refresh" command.

Last updated 1/8/2002 - Tom Eastep

Copyright © 2001, 2002 Thomas M. Eastep.