On Friday 2010-07-16 13:31, Luciano Coelho wrote: > >> >As you may have seen in my earlier rfc email, I'm interested in >> >something similar to the condition match. I'm not sure whether the best >> >approach is to create a CONDITION target where we can set the condition >> >variable in the iptables itself or if it is better to create a new >> >"variable match" and an accompanying "VARIABLE target" that keeps the >> >variables in memory, instead of using procfs. >> >> procfs is in memory :) > >Yes, of course, but I meant without exporting it to procfs. ;) That >would probably make the code a lot simpler (actually I can't imagine a >simpler match/target than a "variable" match/target ;) Well, if not procfs, what should influence this anonymous variable? The weather? (No really, that came up at last NFWS. Using a userspace program, you can write into the procfs file and thus firewall based upon storm and thunder....) -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
