Package: ufw
Version: 0.31.1-2
Severity: normal
Dear Maintainer,
*** Please consider answering these questions, where appropriate ***
* What led up to the situation?
I installed xtables-addon so i could enable geoip blocking.
* What exactly did you do (or not do) that was effective (or
ineffective)?
i did run the following:
apt-get install xtables-addons-common libtext-csv-xs-perl
cd /var/tmp
/usr/lib/xtables-addons/xt_geoip_dl
rm *.zip
if [ ! -d /usr/share/xt_geoip ]; then
mkdir -p /usr/share/xt_geoip
fi
/usr/lib/xtables-addons/xt_geoip_build -D /usr/share/xt_geoip *.csv
## Log & drop packets from multiple countries
## use the : ufw-before-logging-input .. so we dont have double log
messages.
## If you do want double log messages put it in : ufw-before-input
iptables -A ufw-before-input -m geoip --src-cc
KR,CN,IN,RU,TR,VN,UA,BR,VE,JP -m limit --limit 3/minute -j LOG --log-level 4
--log-prefix '[UFW COUNTRY BLOCK] '
iptables -A ufw-before-input -m geoip --src-cc
KR,CN,IN,RU,TR,VN,UA,BR,VE,JP -j DROP
* What was the outcome of this action?
This works fine, but now now i want to add i the ufw config file.
I did test with both rules for the double logging both work when entered
from CLI.
if i add it in :
/etc/ufw/before.rules
( tested both rules ) i get message error init.
and these rules are not processed.
* What outcome did you expect instead?
I would think this should work, since it worked also from cli.
Im i missing something? Or did i hit a bug in ufw.
*** End of the template - remove these lines ***
-- System Information:
Debian Release: 7.8
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)
Kernel: Linux 3.2.0-4-amd64 (SMP w/2 CPU cores)
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Shell: /bin/sh linked to /bin/dash
Versions of packages ufw depends on:
ii debconf [debconf-2.0] 1.5.49
ii iptables 1.4.14-3.1
ii python 2.7.3-4+deb7u1
ii ucf 3.0025+nmu3
ufw recommends no packages.
Versions of packages ufw suggests:
ii rsyslog 5.8.11-3+deb7u2
-- Configuration Files:
/etc/default/ufw changed:
IPV6=no
DEFAULT_INPUT_POLICY="DROP"
DEFAULT_OUTPUT_POLICY="ACCEPT"
DEFAULT_FORWARD_POLICY="DROP"
DEFAULT_APPLICATION_POLICY="SKIP"
MANAGE_BUILTINS=no
IPT_SYSCTL=/etc/ufw/sysctl.conf
IPT_MODULES="nf_conntrack_ftp nf_nat_ftp nf_conntrack_netbios_ns"
/etc/rsyslog.d/20-ufw.conf changed:
:msg,contains,"[UFW " /var/log/ufw.log
& ~
-- debconf information:
ufw/existing_configuration:
ufw/allow_custom_ports:
ufw/enable: false
ufw/allow_known_ports:
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
