I need to insert rules in the prerouting, postrouting, forward hooks
with priorities diff than what is defined for the built-in chains for
the existing tables ("mangle", "raw", "filter", etc.). Further, I need
to insert rules and manipulate these from within kernel space.
For this I'm creating some new tables, and define valid hooks for
where I want to insert rules. For example, I'm using iptable_raw.c as
an example for what I need to do to create a new table.
However I see that in the various files for the targets
(ipt_CLASSIFY.c,) etc. there seems to be some work done based on the
table ( Ex. if (table is "mangle") etc.).
Is that something I need to worry about if create new tables?
I think if I register these hooks from the new table (just as is done
in iptable_raw.c), that should be sufficient to make sure all the rule
invocation, matching, etc. would work as is expected. Isnt that right?
Is there an easier way to do this than create new tables?
Thanks.
-
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
