Down with the mangle table! :-)
Jozsef Kadlecsik
kadlec@blackhole.kfki.hu
Thu, 12 Jul 2001 00:08:51 +0200 (CEST)
On Sun, 8 Jul 2001, Brad Chapman wrote:
> I can't quite figure out exactly what it is you mean. If I'm wrong,
> sorry in advance ;-)
[..]
I imagine something like
# modprobe iptable_user name=foo hook=level [,hook2=level, ...]
# iptables -t foo ....
i.e. one could add an (almost) arbitrary table to the kernel and then
fill it with chains/rules. It could be used instead of the mangle table
and the prestate table as well. However it'd require a good (deep)
knowledge on the netfilter tables, hooks, priorities from the users.
[But it could be backed by say 'iptables -T', which could list the hooks
and the registered tables at the hooks with their priorities.]
Regards,
Jozsef
-
E-mail : kadlec@blackhole.kfki.hu, kadlec@sunserv.kfki.hu
WWW-Home: http://www.kfki.hu/~kadlec
Address : KFKI Research Institute for Particle and Nuclear Physics
H-1525 Budapest 114, POB. 49, Hungary