1 |
On 23 Dec 2005, at 14:00, Gavin Seddon wrote: |
2 |
> Hi, |
3 |
> I to have such a script that blocks ip's after 5 'opportunist' |
4 |
> attempts. |
5 |
> See below. How do I rc-update this to default? |
6 |
> Cheers. |
7 |
|
8 |
I'd dump the current rules to a file (something like /var/lib/ |
9 |
iptables/rules) then have that read in from /etc/conf.d/local.start. |
10 |
You can also have a script in /etc/conf.d/local.stop which will save |
11 |
the rules to a file. The advantage of this approach is that if you |
12 |
change rules on-the-fly the firewall rules will be preserved across |
13 |
restarts. If you want to have the firewall start as a separate |
14 |
process to local then try copying an existing init script and |
15 |
modifying it. |
16 |
|
17 |
|
18 |
Yours, |
19 |
Craig |
20 |
-- |
21 |
Craig Webster | t: +44 (0)131 516 8595 | e: craig@××××××.net |
22 |
Xeriom.NET | f: +44 (0)709 287 1902 | w: http://xeriom.net |
23 |
|
24 |
|
25 |
|
26 |
-- |
27 |
gentoo-amd64@g.o mailing list |