]> git.baikalelectronics.ru Git - kernel.git/commit
projects / kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d6dd8f6) | patch
netfilter: ipset: Exceptions support added to hash:*net* types
authorJozsef Kadlecsik <kadlec@blackhole.kfki.hu>
Sat, 14 Jan 2012 16:16:36 +0000 (17:16 +0100)
committerPablo Neira Ayuso <pablo@netfilter.org>
Wed, 7 Mar 2012 16:40:35 +0000 (17:40 +0100)
commit3af8f6e92569998bf075a2a1fa4678765d6744cb
tree77db2649b491f1d3fa43e96d772ff2f1ce97cf76tree | snapshot
parentd6dd8f6a7144920b7eac361e4ab6d16b350463b8commit | diff
netfilter: ipset: Exceptions support added to hash:*net* types

The "nomatch" keyword and option is added to the hash:*net* types,
by which one can add exception entries to sets. Example:

        ipset create test hash:net
        ipset add test 192.168.0/24
        ipset add test 192.168.0/30 nomatch

In this case the IP addresses from 192.168.0/24 except 192.168.0/30
match the elements of the set.

Signed-off-by: Jozsef Kadlecsik <kadlec@blackhole.kfki.hu>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
include/linux/netfilter/ipset/ip_set.h diff | blob | history
include/linux/netfilter/ipset/ip_set_ahash.h diff | blob | history
net/netfilter/ipset/ip_set_hash_ipportnet.c diff | blob | history
net/netfilter/ipset/ip_set_hash_net.c diff | blob | history
net/netfilter/ipset/ip_set_hash_netiface.c diff | blob | history
net/netfilter/ipset/ip_set_hash_netport.c diff | blob | history
Linux Kernel Source Tree.