Shorewall users - Feb 2005 - Blacklist Limit

Folks,

Is there a limit on the quantity of IP''s you can ban in the blacklist
file?

Thanks,
-MikeD

Mike Dillinger wrote:
> Folks,
> 
> Is there a limit on the quantity of IP''s you can ban in the
blacklist file?
> 
Shorewall defines no such limit. Very large blacklists take a long time
to load however.

-Tom
-- 
Tom Eastep    \ Nothing is foolproof to a sufficiently talented fool
Shoreline,     \ http://shorewall.net
Washington USA  \ teastep@shorewall.net
PGP Public Key   \ https://lists.shorewall.net/teastep.pgp.key

Hello Mike, in case nobody answers: I have seen this question before on this ML.
If all else fails you may want to look at the archives. I have a blacklist that
returns 3392 lines from: wc -l. I have commented the major blocks of the list
that delimits the CIDR''s from each other. I only use CIDR''s
and no individual IPs. A small section of my BL follows as an example.

# BASHTELECOM.RU
83.174.192.0/20		tcp
83.174.192.0/20		udp
# SPEEDCAST.COM
202.174.144.176/29		tcp		25
202.174.144.176/29		udp		25

I add CIDRs dailey and I have noticed no degradation in performance.

HTH, David.

Mike Dillinger wrote ..
> Folks,
> 
> Is there a limit on the quantity of IP''s you can ban in the
blacklist file?
> 
> Thanks,
> -MikeD
> _______________________________________________
> Shorewall-users mailing list
> Post: Shorewall-users@lists.shorewall.net
> Subscribe/Unsubscribe:
https://lists.shorewall.net/mailman/listinfo/shorewall-users
> Support: http://www.shorewall.net/support.htm
> FAQ: http://www.shorewall.net/FAQ.htm