On 9/19/10 3:36 PM, Mr Dash Four wrote: > >>> Another thing I haven't thought of, but you need to account if you are >>> to implement this: currently ipsets with triplets, whatever they are, >>> definitely include a protocol name, so potentially there may be a clash >>> (for example when I have udp in my src triplet and then specify another >>> triplet having tcp protocol as my dst). >>> >> >> I don't understand the problem -- sorry. >> > My fault, sorry! This functionality was, apparently, removed in the > newer versions of ipset, so adding protocol in the set is no longer > possible. >
That explains it -- thanks. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Start uncovering the many advantages of virtual appliances and start using them to simplify application deployment and accelerate your shift to cloud computing. http://p.sf.net/sfu/novell-sfdev2dev
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
