[prev in list] [next in list] [prev in thread] [next in thread] 

List:       netfilter-devel
Subject:    Re: About matching (also was: Multiple Targets)
From:       Wang Jian <lark () linux ! net ! cn>
Date:       2005-04-14 9:20:51
Message-ID: 20050414171531.032E.LARK () linux ! net ! cn
[Download RAW message or body]

Hi Jonas Berlin,


On Thu, 14 Apr 2005 08:56:18 +0000, Jonas Berlin <xkr47@outerspace.dyndns.org> wrote:

> 
> Interesting idea.. but I think I would still prefer to just write
> support for multiple targets, e.g.
> 
> iptables ... -j MARK --set-mark 10 -j LOG --log-prefix "foo" -j ACCEPT
> 
> The structures currently hold exactly one target, I think it wouldn't be
> too hard extending that to have multiple targets instead, just like
> there already is support for multiple matches. I think it might even be
> easier to implement this than to make targets work properly from a
> "MULTIPLE" target.. but that's just my guess :)
> 
> Maybe one could use some unused bit in the structures to indicate that
> multiple targets are in use in order to remain binary compatible..
> 

I am for multiple targets support.

--previous is a hack and it is not very easy to implement in a clean way,
because of the semantics.

Multiple targets' semantics is clean. This is the advantage.


-- 
  lark


[prev in list] [next in list] [prev in thread] [next in thread]