J. Bakshi wrote: > Anatoly Muliarski wrote: > >> 2009/9/7 J. Bakshi <joydeep@xxxxxxxxxxxxxxx>: >> >> >>> Could anyone suggest me how to get time in jiffies ? Tried with "date >>> +%s" but it is not the jiffie value. Any clue please ? >>> >>> >> You may use the first field in /proc/uptime - that gives you uptime in seconds. >> >> IMHO, the recent module should be used for filtering purpose only not >> for managing black lists. >> The right way is ipset :) >> And it does not require you to recompile your kernel - you may install >> it as a module. >> And yes, to use it you should recompile iptables if it does not >> support it by default. >> >> >> > > Hello Anatoly, > > Thanks for your enlightenment. I have to check if iptables supports > ipset by default in suse and debian. BTW any good tutorial to start with > ipset ? > > regards > Hello, find iptree of ipset. seems it can do the job. iptree can store ip addresses with a timeout value. So the next thing is to migrate the blacklisted ip from ipt_recent module to the iptree of ipset. I hope I am on te right track. need some guidance from you list. regards. -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
