On Fri, 2009-04-17 at 15:02 +0200, Giacomo wrote: > Is userspace iptables resolving names into ips and loading them into > the kernel when i impart the command line > and then are they left as they are into the kernel? Yes. > If an ip address changes its value, mantaining the same name, is it > necessary to reload the rule? Yes, as consequence of the above. > If a name has more than one ip address (the name has aliases), are all > the ip addresses loaded into the rule? Subject to a few restrictions, a rule is inserted for each IP address return by gethostbyname. > (as an example www.google.com has three ips). If yes, how can I see > the numeric values into the iptable rule? The usual way iptables -L, if you want to switch off name resolution just add an -n (as specified in the fine manual). -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
