> Example: If list1 - list:set type of set has, say, 5 members: iface1
and iface2 - type hash:net,iface, and ipp1, ipp2 and ipp3 - type
hash:ip,port, then the following iptables statement:
Fly on the wall comment: the fact you allow sets of objects of
different types seems like a design mistake.
Nope, that is the *real* beauty of list:set type of sets - you can
mix-and-match to your heart's content! In ipset versions prior to 4, I
think, there used to be a feature called "nesting" in sets, but it was
fraud and later abandoned.
--
To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
