On Tue, Feb 11, 2020 at 5:33 PM Witold Tosta wrote:
>
> >
> > Now, xt_geoip is never loaded (nor are the other ones).
>
> Could you please explain why you don't want the module xt_geoip to be
> loaded? For Linux system, loading it really doesn't matter.
Why? Well, I've been using xt_geoip and xta
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
On 2/11/20 7:12 AM, Vieri Di Paola wrote:
> On Tue, Feb 11, 2020 at 3:49 PM Matt Darfeuille
> wrote:
>>
>> If the other modules are not loaded and 'AUTOHELPERS' is set to
>> 'No', are you sure that Shorewall is the culprit?
>
> AUTOHELPERS is set to
Now, xt_geoip is never loaded (nor are the other ones).
Vieri
Dear Vieri
Could you please explain why you don't want the module xt_geoip to be
loaded? For Linux system, loading it really doesn't matter. This loaded
module takes about 16KB in RAM, so as much as nothing, and really in
combi
On Tue, Feb 11, 2020 at 3:49 PM Matt Darfeuille wrote:
>
> If the other modules are not loaded and 'AUTOHELPERS' is set to 'No',
> are you sure that Shorewall is the culprit?
AUTOHELPERS is set to yes (default) for its convenience.
Maybe I should specify a helper for each rule that needs it, and
On 2/11/2020 3:48 PM, Matt Darfeuille wrote:
> On 2/11/2020 3:35 PM, Vieri Di Paola wrote:
>> Hi,
>>
>> I've blacklisted some kernel modules so they are not autoloaded at
>> boot time (/etc/modprobe.d).
>>
>> I've also blacklisted them in Shorewall.
>>
>> # grep DONT_LOAD /etc/shorewall/shorewall.c
On 2/11/2020 3:35 PM, Vieri Di Paola wrote:
> Hi,
>
> I've blacklisted some kernel modules so they are not autoloaded at
> boot time (/etc/modprobe.d).
>
> I've also blacklisted them in Shorewall.
>
> # grep DONT_LOAD /etc/shorewall/shorewall.conf
> DONT_LOAD=xt_geoip,xt_iface,xt_TARPIT
>
> How
Hi,
I've blacklisted some kernel modules so they are not autoloaded at
boot time (/etc/modprobe.d).
I've also blacklisted them in Shorewall.
# grep DONT_LOAD /etc/shorewall/shorewall.conf
DONT_LOAD=xt_geoip,xt_iface,xt_TARPIT
However, the geoip module is still getting loaded.
# lsmod | grep xt
