That should work. Thanks. -----Original Message----- From: Sven Schuster [mailto:schuster.sven@xxxxxx] Sent: Sunday, November 19, 2006 10:55 PM To: Gary W. Smith Cc: netfilter@xxxxxxxxxxxxxxxxxxx Subject: Re: Dynamic chain alternatives Hi Gary, On Sun, Nov 19, 2006 at 05:23:53PM -0800, Gary W. Smith told us: > I have a need to create a dynamic table in that will have random IP's > inserted and deleted on a regular basis. Currently we do this by > creating a chain at load time and on a scheduled basis we flush that > chain and then to a iptables-restore -n < dynamic_rules.txt. > > Is there a better approach to doing this? what about using ipset?? http://www.netfilter.org/projects/ipset/index.html hope that helps, Sven > Gary Wayne Smith > -- Linux zion.homelinux.com 2.6.18-1.2849.fc6xen #1 SMP Fri Nov 10 13:56:52 EST 2006 i686 athlon i386 GNU/Linux 07:54:34 up 4 days, 9:12, 1 user, load average: 0.07, 0.13, 0.13
