Tom
If the host file contains:
p3 br0:+sjs
p3 br0:+
the following iptables rules are generated:
-A br0_fwd -m set --set sjs src -m policy --dir in --pol none -j p3_frwd
-A br0_fwd -m set --set src -m policy --dir in --pol none -j p3_frwd
My kernel does not contain ipset support therefore this just a visual
inspection of the generated iptables rules.
I assume the second iptables rule would fail, as it does not contain a set
name.
Steven.
-------------------------------------------------------------------------
This SF.net email is sponsored by DB2 Express
Download DB2 Express C - the FREE version of DB2 express and take
control of your XML. No limits. Just data. Click to get it now.
http://sourceforge.net/powerbar/db2/
_______________________________________________
Shorewall-devel mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-devel
