Hi, Wietse Venema wrote: > Instead, use a policy daemon with persistent database. > As far as I remember I tried once http://www.policyd.org, but it didn't work for me. As I remember there was a problem with message accounting, and I have got an email from Nigel from policyd where he confirmed that for example 192.168.0.2 is 0.0.0.0/0 and 192.111.111.111 is also 0.0.0.0/0 so IP is not unique in accounting as long as you will not specify each IP address you want to limit.
He's saying: " Adding of "external" acl lists is definitely something that will be implemented. This requires the caching to work, which will with a bit of tuning. I'd say the ETA on that feature is about 3 months or so, maybe 6. Just waiting until I have a bit of time to implement it, or if someone is willing to speed up development by sponsoring :D -N " > Wietse > Or maybe you have different policy daemon in mind ? Regards, Jarek
