Steven Jan Springl wrote: > Tom > > If the host file contains: > > p3 br0:+sjs > p3 br0:+ > > the following iptables rules are generated: > > -A br0_fwd -m set --set sjs src -m policy --dir in --pol none -j p3_frwd > -A br0_fwd -m set --set src -m policy --dir in --pol none -j p3_frwd > > > My kernel does not contain ipset support therefore this just a visual > inspection of the generated iptables rules. > > I assume the second iptables rule would fail, as it does not contain a set > name.
r6738 does a better job of editing host file entries. Thanks, -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ [EMAIL PROTECTED] PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------- This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/
_______________________________________________ Shorewall-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-devel
