On 26/10/2012 14:58, Csordás Csaba Ifj. wrote:
Dear Reader, I would like to ask when will it possible writing such rules as mentioned in $SUBJECT. For example: ipset new foo hash:ip ipset add foo 192.168.1.1 -t filter -A FORWARD -j LOG ... -t nat -A POSTROUTING -j SNAT ... -t mangle -A PREROUTING -j MARK ...
At this point haven't you re-implemented almost the whole of netfilter inside ipset? (Or is that the point?).
Where do we draw the line? Seems like an interesting idea anyway! Ed W -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
