[capirca] r249 committed - Edited wiki page PolicyFormat through web user interface.
9 views
Skip to first unread message
cap...@googlecode.com
Jan 9, 2014, 11:53:58 AM1/9/14
to capir...@googlegroups.com
Revision: 249
Author: wat...@google.com
Date: Thu Jan 9 16:53:39 2014 UTC
Log: Edited wiki page PolicyFormat through web user interface.
http://code.google.com/p/capirca/source/detail?r=249
Modified:
/wiki/PolicyFormat.wiki
=======================================
--- /wiki/PolicyFormat.wiki Thu Sep 27 17:47:28 2012 UTC
+++ /wiki/PolicyFormat.wiki Thu Jan 9 16:53:39 2014 UTC
@@ -125,6 +125,13 @@
* _inet_: specifies that the resulting filter should only render IPv4
addresses.
* _inet6_: specifies that the resulting filter should only render IPv6
addresses.
* _mixed_: specifies that the resulting filter should only render IPv4
and IPv6 addresses (default).
+
+=== Ipset ===
+Ipset is a system inside the Linux kernel, which can very efficiently
store and match IPv4 and IPv6 addresses. This can be used to dramatically
increase performance of iptables firewall.
+
+The Ipset header designation follows the Iptables format above, but uses
the target platform of 'ipset':
+{{{
+target:: ipset [INPUT|OUTPUT|FORWARD|custom] {ACCEPT|DROP} {truncatenames}
{nostate} {inet|inet6}
== Terms Section ==
Author: wat...@google.com
Date: Thu Jan 9 16:53:39 2014 UTC
Log: Edited wiki page PolicyFormat through web user interface.
http://code.google.com/p/capirca/source/detail?r=249
Modified:
/wiki/PolicyFormat.wiki
=======================================
--- /wiki/PolicyFormat.wiki Thu Sep 27 17:47:28 2012 UTC
+++ /wiki/PolicyFormat.wiki Thu Jan 9 16:53:39 2014 UTC
@@ -125,6 +125,13 @@
* _inet_: specifies that the resulting filter should only render IPv4
addresses.
* _inet6_: specifies that the resulting filter should only render IPv6
addresses.
* _mixed_: specifies that the resulting filter should only render IPv4
and IPv6 addresses (default).
+
+=== Ipset ===
+Ipset is a system inside the Linux kernel, which can very efficiently
store and match IPv4 and IPv6 addresses. This can be used to dramatically
increase performance of iptables firewall.
+
+The Ipset header designation follows the Iptables format above, but uses
the target platform of 'ipset':
+{{{
+target:: ipset [INPUT|OUTPUT|FORWARD|custom] {ACCEPT|DROP} {truncatenames}
{nostate} {inet|inet6}
== Terms Section ==
Reply all
Reply to author
Forward
0 new messages