On Wednesday 2022-07-20 18:56, Erik Skultety wrote: >> >> If you or jc is to parse anything, it must only be done with the >> iptables -S output form. > >Well, that would be a problem because 'jc' iptables plugin doesn't understand >the -S output (isn't -S considered deprecated or I'm just halucinating?). iptables-save loops over all tables, and its output can be fed back to iptables-restore. That has existed for a long time. Then at some point, -S was added, which is a subset of save-style output for just one table or chain, but otherwise unchanged. Another way of looking at it is that the -S command is like -L, but in re-parsable syntax. If anything, -L would be deprecated.
