Alan Orth
38c333045b
Note that there is currently an issue loading the spamhaus rules on Debian 11 when using ipsets with firewalld and the nftables backend. The bug is apparently caused by overlapping CIDR segments, and the solution appears to be that we need to manually aggregate them with a tool like aggregate6 (Python). See: https://bugzilla.redhat.com/show_bug.cgi?id=1836571 See: https://wiki.fysik.dtu.dk/it/Linux_firewall_configuration#using-ipsets-in-firewalld-on-rhel-centos-8 See: https://github.com/job/aggregate6