[Bug 580] iptables-restore and iptables-save lack comparison of a saved ruleset against the currently deployed rules
bugzilla-daemon at netfilter.org
bugzilla-daemon at netfilter.org
Mon Jun 24 23:34:52 CEST 2013
https://bugzilla.netfilter.org/show_bug.cgi?id=580
--- Comment #7 from Phil Oester <netfilter at linuxace.com> 2013-06-24 23:34:51 CEST ---
> would you be thrilled if all the rules were in random order too?
This comparison is a bit far fetched, given that ordering of rules is so
important (accept before drop, etc). The order in which tables are output in
iptables-save is largely irrelevant, except for the corner case this user is
asking for. Otherwise many other users would be clamoring for it.
> Because anything users have to construct above it
> is going to be more error-prone
Right, like the Nagios monitoring script this user is creating...
But we'll leave this 4 year old request opened. Perhaps someone will get
around to it someday.
--
Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.
More information about the netfilter-buglog
mailing list