Skip to content

E
eterban
Commit fc5dc92c authored by Vitaly Lipatov's avatar Vitaly Lipatov
Browse files
Options

eterban_switcher: increase maxelem

parent daa64fb2
Hide whitespace changes
Inline Side-by-side
Showing with 4 additions and 4 deletions
gateway/usr/share/eterban/eterban_switcher.py
View file @ fc5dc92c
......@@ -70,9 +70,10 @@ def restore_ipset_eterban_1():
def create_iptables_rules():
global ban_server, ipset_eterban_1, ipset_firehol, ipset_eterban_white, i_interface
commands=['ipset create ' + ipset_eterban_1 + ' iphash',
# set maxelem in config
commands=['ipset create ' + ipset_eterban_1 + ' hash:ip maxelem 650000',
'ipset create ' + ipset_firehol + ' hash:net',
'ipset create ' + ipset_eterban_white + ' iphash',
'ipset create ' + ipset_eterban_white + ' hash:ip',
'iptables -t nat -I PREROUTING -i ' + i_interface + ' -m set --match-set ' + ipset_firehol + ' src -j DNAT --to-destination ' + ban_server,
'iptables -t nat -I PREROUTING -i ' + i_interface + ' -m set --match-set ' + ipset_eterban_1 + ' src -j DNAT --to-destination ' + ban_server,
'iptables -t nat -I PREROUTING -i ' + i_interface + ' -m set --match-set ' + ipset_eterban_white + ' src -j ACCEPT',
......@@ -167,4 +168,4 @@ for message in p.listen():
log.write(info)
log.flush()
else:
pass
\ No newline at end of file
pass
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment