(fwd) is iptables-save file format a documented API?
Harald Welte
laforge@gnumonks.org
Sun, 6 Jan 2002 16:56:01 +0100
On Sat, Jan 05, 2002 at 06:04:17PM +0100, Marc Haber wrote:
> >it is. People are running commercial applications which have a pipe opened
> >to iptables-save and do all their rule manipulation through this pipe.
>
> you mean iptables-restore?
yes, of course.
> That would apply the limit to the central log rule, and not to the
> actual rule that decided to drop the packet, and it wouldn't allow to
> have different log-prefixes for the rules. I like it when I see in the
> log which rule dropped the packet.
mh, I see.
> Marc
--
Live long and prosper
- Harald Welte / laforge@gnumonks.org http://www.gnumonks.org/
============================================================================
GCS/E/IT d- s-: a-- C+++ UL++++$ P+++ L++++$ E--- W- N++ o? K- w--- O- M-
V-- PS+ PE-- Y+ PGP++ t++ 5-- !X !R tv-- b+++ DI? !D G+ e* h+ r% y+(*)