[Bug 1687] Define set of set with in ipset list:sets
bugzilla-daemon at netfilter.org
bugzilla-daemon at netfilter.org
Fri Jun 2 14:42:42 CEST 2023
https://bugzilla.netfilter.org/show_bug.cgi?id=1687
Phil Sutter <phil at nwl.cc> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |phil at nwl.cc
--- Comment #1 from Phil Sutter <phil at nwl.cc> ---
Not planned per se. If you use anonymous sets, they are merged automatically.
E.g.:
ip saddr { { 1.1.1.1, 2.2.2.2 }, { 3.3.3.3, 4.4.4.4 } }
The example is non-sense, but you may use defines to "refer" to sets in a rule.
A classic workaround for your example rule though is:
ip6 saddr @FR drop
ip6 saddr @MC drop
ip6 saddr @CH drop
You could put this into a separate chain for convenience.
--
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20230602/d64fffaa/attachment.html>
More information about the netfilter-buglog
mailing list