On Tue, 26 Jul 2005, Visham Ramsurrun wrote: > Hi to all, > > I would like to know how to execute a firewall script that contains an > if-else statement on a per-packet basis. The if and else part each > contain iptables rules that need to be executed on a packet basis? How > can I do that? > > Any input will be most appreciated.. First guess is with two chains.. it's clear you have a test for the 'if (test) then X' sequence, so write a rule to check that test. Instead of REJECTing or ACCEPTing the packet immediately, send it over to different chain for additional testing, and ACCEPT or REJECT it there. Does that make sense? Perhaps a more detailed explaination of what you're trying to do would be helpful... HTH... - -- "There are 10 types of people in the world: Those who understand binary and those that don't."
