Hi Tom Am 06.05.2018 um 05:50 schrieb Tom Eastep: > On 05/05/2018 02:21 PM, Erich Titl wrote: ... > > Erich, > > Search the word 'deprecated' in that article - you will find what you need.
Sorry to be that dense. I deduct that the current format of the DROP and REJECT action is deprecated.... but, I am using the standard actions. Do I have to rewrite the DROP and REJECT actions or is there a better way to define such actions in the policy file. I am referring to http://shorewall.net/manpages/shorewall-policy.html DROP and REJECT appear to be valid actions. If they are deprecated is is just the format or the use? The policy file is quite simple > loc net ACCEPT > loc vpn ACCEPT > net all DROP > # If you want open access to the Internet from your Firewall > # remove the comment from the following line. > fw net ACCEPT > # THE FOLLOWING POLICY MUST BE LAST > # > all all REJECT NFLOG(4) looking at the samples I find for policy something like this > loc net ACCEPT > net all DROP $LOG_LEVEL > # THE FOLOWING POLICY MUST BE LAST > all all REJECT $LOG_LEVEL so I am coonfused What do we need to write into the policy file so shorewall is not coughing on it. Or can we simply forget about rejecting and dropping? Thank you Erich
smime.p7s
Description: S/MIME Cryptographic Signature
------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
