If you're applying firewall rules when the machine comes up (as I imagine most people are) the machine's internet access may not be available. It would make sense to store the raw JSON files from the IP sources in /var so firewall rules can be applied even when the network is down. nft-geo-filter will have to gain the ability to potentially refresh those files as well.
If you're applying firewall rules when the machine comes up (as I imagine most people are) the machine's internet access may not be available. It would make sense to store the raw JSON files from the IP sources in
/varso firewall rules can be applied even when the network is down. nft-geo-filter will have to gain the ability to potentially refresh those files as well.