El jue, 28 de 10 de 2004 a las 17:05, Jason Opperisano escribiÃ: > so, the upshot is this--if your ruleset is sufficiently large to make > the inefficiency of scripted "iptables" commands a problem--you'll need > to use "iptables-restore" to load your rules. once you get the hang of > it, it really isn't that hard to just edit the "iptables-restore" file > format (even though this isn't "recommended"). Don't know why everybody talks about the problem of editing the iptables-save file. You don't need to do it. You just save the script that generates the iptables-save rules and you edit it when you need it, then you generate the rules and do a new iptables-save. No problem here. -- Jose Maria Lopez Hernandez Director Tecnico de bgSEC jkerouac@xxxxxxxxx bgSEC Seguridad y Consultoria de Sistemas Informaticos http://www.bgsec.com ESPAÃA The only people for me are the mad ones -- the ones who are mad to live, mad to talk, mad to be saved, desirous of everything at the same time, the ones who never yawn or say a commonplace thing, but burn, burn, burn like fabulous yellow Roman candles. -- Jack Kerouac, "On the Road"
