Otherwise existing rules still remain in the chain and will be processed
even geoipblock has been disabled.
# Read settings file
&General::readhash("$geoipfile", \%geoipsettings);
} else {
+ # Drop active rules.
+ run("$IPTABLES -F GEOIPBLOCK");
+
# Exit submodule, go on processing the remaining script
return;
}
# Get supported locations.
my @locations = &fwlib::get_geoip_locations();
- # Create iptables chain.
+ # Flush iptables chain.
run("$IPTABLES -F GEOIPBLOCK");
# Loop through all supported geoip locations and