On 4/16/13 3:37 PM, "Dash Four" <mr.dash.f...@googlemail.com> wrote:
>Even if I do this: > >INLINE $FW net ; -p 6 -m mickey-mouse --name test -m set --match-set >set1 src -m mickey-mouse --name test2 -j SECCTX --name test3 > >that still generates > >-A fw2net -p 6 -m mickey-mouse --name test -m mickey-mouse --name test2 >-m set --match-set set1 -j SECCTX --name test3 > >Note the "displacement" of the "set" match - position 2 in "rules", >position 3 in the generated iptables rules Yep -- repeated matches (micky-mouse in the above case) will appear together. -Tom You do not need a parachute to skydive. You only need a parachute to skydive twice. ------------------------------------------------------------------------------ Precog is a next-generation analytics platform capable of advanced analytics on semi-structured data. The platform includes APIs for building apps and a phenomenal toolset for data science. Developers can use our toolset for easy data analysis & visualization. Get a free account! http://www2.precog.com/precogplatform/slashdotnewsletter _______________________________________________ Shorewall-devel mailing list Shorewall-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-devel
