Hi, I'm happy to announce ipset 2.0! If you want to - store multiple IP addresses or port numbers and match against the collection at one swoop; - dynamically update rules against IP addresses or ports without performance penalty; - express complex IP address and port based rulesets with one single iptables rule and benefit from the speed of IP sets then check out http://people.netfilter.org/kadlec/ipset/ This is a major rewriting of the previous ipset version. The most important changes are - Chaining of sets are changed: child sets replaced by bindings - Kernel-userspace communication reorganized to minimize the number of syscalls - Save and restore functionality implemented - iphash type reworked: clashing resolved by double-hashing and by dynamically growing the set. Best regards, Jozsef - E-mail : kadlec@xxxxxxxxxxxxxxxxx, kadlec@xxxxxxxxxxxxxxx PGP key : http://www.kfki.hu/~kadlec/pgp_public_key.txt Address : KFKI Research Institute for Particle and Nuclear Physics H-1525 Budapest 114, POB. 49, Hungary
