On Wed, Aug 19, 2009 at 05:51:41PM +0200, martin f krafft wrote:
> It would be grand if ferm could somehow fuse the two domains so that
> I can maintain only one ruleset and have it generate the two
> different configurations for iptables/ip6tables.
You can already use "domain (ip ip6)". Ferm will then pass the rules to both
iptables and ip6tables. E.g.:
domain (ip ip6) table filter {
chain INPUT proto tcp dport ssh ACCEPT;
chain FORWARD policy DROP;
# ...
}
Gabriel.
--
To UNSUBSCRIBE, email to [email protected]
with a subject of "unsubscribe". Trouble? Contact [email protected]
