[prev in list] [next in list] [prev in thread] [next in thread]
List: netfilter-devel
Subject: Re: About matching (also was: Multiple Targets)
From: Wang Jian <lark () linux ! net ! cn>
Date: 2005-04-14 9:20:51
Message-ID: 20050414171531.032E.LARK () linux ! net ! cn
[Download RAW message or body]
Hi Jonas Berlin,
On Thu, 14 Apr 2005 08:56:18 +0000, Jonas Berlin <xkr47@outerspace.dyndns.org> wrote:
>
> Interesting idea.. but I think I would still prefer to just write
> support for multiple targets, e.g.
>
> iptables ... -j MARK --set-mark 10 -j LOG --log-prefix "foo" -j ACCEPT
>
> The structures currently hold exactly one target, I think it wouldn't be
> too hard extending that to have multiple targets instead, just like
> there already is support for multiple matches. I think it might even be
> easier to implement this than to make targets work properly from a
> "MULTIPLE" target.. but that's just my guess :)
>
> Maybe one could use some unused bit in the structures to indicate that
> multiple targets are in use in order to remain binary compatible..
>
I am for multiple targets support.
--previous is a hack and it is not very easy to implement in a clean way,
because of the semantics.
Multiple targets' semantics is clean. This is the advantage.
--
lark
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic