- Subject: Re: [iptables] Effect of negating multiple source or dest IPs (-s or -d)
- From: Jan Engelhardt <jengelh@xxxxxxxxxx>
- Date: Tue, 8 Nov 2011 20:23:02 +0100 (CET)
- Cc: netfilter@xxxxxxxxxxxxxxx
- In-reply-to: <j9bnrd$372$1@dough.gmane.org>
- User-agent: Alpine 2.01 (LNX 1266 2009-07-14)
>On Tuesday 2011-11-08 18:11, U.Mutlu wrote:
>> actually generates an equivalent of
>>
>> ! -d a || ! -d b || ! -d c
>
> But OR'ing them IMHO doesn't make much sense, just think about it.
> I would suggest to AND them.
Rules exhibit an OR-like relationship to one another. There is nothing
that can be changed about it.
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
[Linux Netfilter Development]
[Linux Kernel Networking Development]
[Linux Networking Development]
[Linux Kernel Development]
[Linux Resources]
[LARTC]
[Bugtraq]
[Consulting]
[Free Internet Dating]
[Yosemite Forum]
[Photo]
