On Tue, Apr 16, 2002 at 03:50:09PM +0200, Wiktor Wodecki wrote: > Hello, > > begin Norbert Sendetzky quotation: > > > Hi all > > > > I have two suggestions for your very nice netfilter framework: > > > > First of all it would be nice if the multiport match would accept not > > only single ports but also port ranges. This would streamline the > > whole thing a little bit. I don't know the actual code, but the > > implementation of multiport probably uses an array to store the > > ports. If this array could be extended to be an array of structs then > > it would be possible to store also port ranges, e.g. > > there is a mport patch in patch-o-matic (any plans of merging it with > standard multiport?) which does exactly what you want.
As usually with all modifications of matches/targets, there is the compatibility issue: - old iptables userspace needs to work with new kernel mport - new kernel mport needs to work with old kernel mport > Johoho | http://johoho.eggheads.org -- Live long and prosper - Harald Welte / [EMAIL PROTECTED] http://www.gnumonks.org/ ============================================================================ GCS/E/IT d- s-: a-- C+++ UL++++$ P+++ L++++$ E--- W- N++ o? K- w--- O- M+ V-- PS++ PE-- Y++ PGP++ t+ 5-- !X !R tv-- b+++ !DI !D G+ e* h--- r++ y+(*)
msg00753/pgp00000.pgp
Description: PGP signature
