> Dear all, > I'm learning firewall in both Cisco and iptables. After a long time > searching, i found no thing in iptables can compare to Cisco > Lock-n-Key (Dynamic Access List) (i find in the Patch-O-Matic too). I don't know what Lock-n-Key is, but if you want to filter on dynamically changeable lists of IP or MAC addresses, then you probably want ipset: http://ipset.netfilter.org/ . -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
