On Thursday 2008-08-14 22:14, Grant Taylor wrote: > On 8/14/2008 9:04 PM, Jan Engelhardt wrote: >> You can specify --rsrc/--rdest (patch just merged that documents them). > > So the options did exist, but they were undocumented? Correct. Blame it on ... commit f33c46140f0e0a230aba5d739ce40cb14e066b13 Author: Jonas Berlin <xkr47@xxxxxxxxxxxxxxxxxxxxx> Date: Fri Apr 1 06:54:23 2005 +0000 >> -A INPUT -d 192.168.0.255 -p udp --dport 161 -m recent --name snmp --rsrc >> --set >> >> -A OUTPUT -p udp --sport 161 -m recent --name snmp --rdest --rcheck > > *nod* That is the general idea. > > So I take it that the default is --rsrc but you can specify --rdest > and act on the destination IP for all options of recent, i.e. > --update and --remove too? Right. It seems that when done cleverly, you can mix --rsrc and --rdest for a given --name even. -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
