Hi,
I'm building a "router on a stick" type of firewall using netfilter,
which have a two dedicated chains per interface (egress+ingress). This
causes a large FORWARD and FORWARD-EGRESS chains with rules that match
on interface name and jumps to the appopriate interface-specific chain.
I've been wanting to replace them all with just one rule per direction:
iptables -A FORWARD -j ${in-interface}-ingress
iptables -A FORWARD-EGRESS -j ${out-interface}-egress
Is that possible somehow?
Best regards,
--
Tore Anderson
Redpill Linpro AS - http://www.redpill-linpro.com/
Tel: +47 21 54 41 27
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
