Shorewall users - Dec 2009 - EmergingThreats fwrules ipset updater

hi

i''ve created an emergingthreats fwrules ipset updater for use with my 
shorewall.

maybe others find this usefull too.

short howto:
* get bash script (emerging-ipset-update.txt) from 
http://doc.emergingthreats.net/bin/view/Main/EmergingFirewallRules
* add the configured ipsets to shorewall configfile "blacklist"
* if not already configured: configure your interfaces for blacklisting
* add the script to shorewall configfile "init" to ensure rules are 
loaded before shorewall starts
* configure a cron job to execute the script once or twice a day
* restart shorewall


- Thomas


------------------------------------------------------------------------------
Return on Information:
Google Enterprise Search pays you back
Get the facts.
http://p.sf.net/sfu/google-dev2dev

Thomas Mueller wrote:
> hi
> 
> i''ve created an emergingthreats fwrules ipset updater for use with
my
> shorewall.
> 
> maybe others find this usefull too.
> 
> short howto:
> * get bash script (emerging-ipset-update.txt) from 
> http://doc.emergingthreats.net/bin/view/Main/EmergingFirewallRules
> * add the configured ipsets to shorewall configfile "blacklist"
> * if not already configured: configure your interfaces for blacklisting
> * add the script to shorewall configfile "init" to ensure rules
are
> loaded before shorewall starts
> * configure a cron job to execute the script once or twice a day
> * restart shorewall
Thanks, Thomas!

-Tom
-- 
Tom Eastep        \ When I die, I want to go like my Grandfather who
Shoreline,         \ died peacefully in his sleep. Not screaming like
Washington, USA     \ all of the passengers in his car
http://shorewall.net \________________________________________________



------------------------------------------------------------------------------
Return on Information:
Google Enterprise Search pays you back
Get the facts.
http://p.sf.net/sfu/google-dev2dev