Hello All,
I've run a server for years now but am just really learning how to manage it. So, I've recently installed APF and have loaded a bunch of country.zone files into iptables. Between stop and start APF and then stop and start iptables I can load all new iptables deny rules into APF and it works GREAT.
However, if APF is shut down and started again it becomes necessary to reload all rules into APF from iptables. So, I found out about this SET_FASTLOAD option. Since then I've applied to conf.apf SET_FASTLOAD = 1. Seems to work great all day, maybe even the next day or two. There comes a time though sometimes hours, sometimes a day or so... where all rules are dropped from APF again and allowing a full onslaught of brute force attempts from countries up to no good.
How in the world can I get APF and iptables to keep working together without my direct daily interaction??
Thank You.
PS. sorry if I've used incorrect terminology to explain my situation.
I've run a server for years now but am just really learning how to manage it. So, I've recently installed APF and have loaded a bunch of country.zone files into iptables. Between stop and start APF and then stop and start iptables I can load all new iptables deny rules into APF and it works GREAT.
However, if APF is shut down and started again it becomes necessary to reload all rules into APF from iptables. So, I found out about this SET_FASTLOAD option. Since then I've applied to conf.apf SET_FASTLOAD = 1. Seems to work great all day, maybe even the next day or two. There comes a time though sometimes hours, sometimes a day or so... where all rules are dropped from APF again and allowing a full onslaught of brute force attempts from countries up to no good.
How in the world can I get APF and iptables to keep working together without my direct daily interaction??
Thank You.
PS. sorry if I've used incorrect terminology to explain my situation.
