projects / GitHub / exynos8895 / android_kernel_samsung_universal8895.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 0927a1a) | patch
netfilter: ipset: Exceptions support added to hash:*net* types
authorJozsef Kadlecsik <kadlec@blackhole.kfki.hu>
Sat, 14 Jan 2012 16:16:36 +0000 (17:16 +0100)
committerPablo Neira Ayuso <pablo@netfilter.org>
Wed, 7 Mar 2012 16:40:35 +0000 (17:40 +0100)
commit2a7cef2a4ba64b9bf0ff9aeaa364554716c06669
tree77db2649b491f1d3fa43e96d772ff2f1ce97cf76tree | snapshot (tar.gz zip)
parent0927a1ac63388271d58e9f7352d71434e1271374commit | diff
netfilter: ipset: Exceptions support added to hash:*net* types

The "nomatch" keyword and option is added to the hash:*net* types,
by which one can add exception entries to sets. Example:

        ipset create test hash:net
        ipset add test 192.168.0/24
        ipset add test 192.168.0/30 nomatch

In this case the IP addresses from 192.168.0/24 except 192.168.0/30
match the elements of the set.

Signed-off-by: Jozsef Kadlecsik <kadlec@blackhole.kfki.hu>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
include/linux/netfilter/ipset/ip_set.h diff | blob | blame | history
include/linux/netfilter/ipset/ip_set_ahash.h diff | blob | blame | history
net/netfilter/ipset/ip_set_hash_ipportnet.c diff | blob | blame | history
net/netfilter/ipset/ip_set_hash_net.c diff | blob | blame | history
net/netfilter/ipset/ip_set_hash_netiface.c diff | blob | blame | history
net/netfilter/ipset/ip_set_hash_netport.c diff | blob | blame | history