On Mon, 2004-12-20 at 11:51 +0100, Wojtek Swiatek wrote:> Hello,
>
> I am using shorewall for about a day now :) and so far so good
> (it looks like a really great software). I have a question
> though I could not answer from the docs.
>
> I have a large set of hosts which will be used to limit access
> to SSH. Is there a way to ''group'' these under an alias
and use
> it afterwards for setting rules?
> I thought about using an action.something for this but then I
> need to implicitly state the action (lines like "ACCEPT thehost -
> -"). i would ike, though, to use the list to somettimes accept
> and sometimes deny access.
>
Options include:
a) Define a zone consisting of those hosts.
b) Define a shell variable that lists the hosts.
c) Define a shell variable that lists the hosts and use it in an action
(see my ''MIRRORS'' variable and ''Mirrors''
action at
http://shorewall.net/myfiles.htm).
-Tom
--
Tom Eastep \ Nothing is foolproof to a sufficiently talented fool
Shoreline, \ http://shorewall.net
Washington USA \ teastep@shorewall.net
PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key