Hi
On Wed, Aug 20, 2008 at 3:16 PM, Hinko Kocevar
<hinko.kocevar@xxxxxxxxxxxx> wrote:
> That would mean that when stopping firewall I would need to remove the
> modules, or at least one of them, on which I could rely.
Yes, I think so... that's the most effective way to do it.
> Yes as you put it, iptables is always active, the only question is when
> it is actually 'handling' traffic. It would a nice feature if one could
> obtain number of eg. 'active' rules across the complete netfilter.
Probably that could be done by putting counter or flag in every
netfilter hooks being used. Something like:
if (hook_exist)
{
hook_name_flag++
call hook_target;
}
regards,
Mulyadi.
--
To unsubscribe from this list: send an email with
"unsubscribe kernelnewbies" to ecartis@xxxxxxxxxxxx
Please read the FAQ at http://kernelnewbies.org/FAQ
