[syslog-ng] Firewalling with syslog-ng, a working prototype
Gergely Nagy
algernon at balabit.hu
Tue Feb 22 15:54:25 CET 2011
On Mon, 2011-02-21 at 19:22 +0100, Valentijn Sessink wrote:
> Op 21-02-11 18:20, Gergely Nagy schreef:
> > for reasons beyond my control), and it doesn't have /proc/net/xt_recent,
> > only /proc/net/ipt_recent.
> >
> > I haven't tried whether that works the same or not, as I'd have to go
> > through a lot of pain to gain access to the box if anything goes wrong.
>
> ipt_recent is the older name of the current xt_recent thing. In fact, my
> preliminary tests with -m recent were conducted on an older box with
> ipt_recent. I think they are almost the same; but ipt_recent doesn't
> have a "+" in front of the IP-addresses. Change your template
> accordingly and you're set.
Enabled this on the Xen VM too, so far, so good! Only my home router is
left now (but that's only a matter of getting ipt_recent onto the
firmware).
Thanks again!
--
|8]
More information about the syslog-ng
mailing list