search for: ipset_match

...perl 4.2.11 with ipsets just fine. 2. Shorewall 4.4.10 reports that the ipset "capability" is present: --------------------------------------------------------------------- # shorewall show capabilities | grep Ipset Ipset Match: Available # shorewall show -f capabilities | grep IPSET IPSET_MATCH=Yes --------------------------------------------------------------------- 3. The modules are loaded: --------------------------------------------------------------------- twister shorewall # lsmod Module Size Used by ip_set_setlist 2444 1 ipt_set 843...

...tfilter capabilities - Sat Dec 5 23:32:07 EST 2009 +# Shorewall6 4.2.8 detected the following ip6tables/netfilter capabilities - Sun Dec 6 00:04:48 EST 2009 # -NAT_ENABLED=Yes MANGLE_ENABLED=Yes MULTIPORT=Yes XMULTIPORT=Yes @@ -16,7 +15,7 @@ IPRANGE_MATCH=Yes RECENT_MATCH=Yes OWNER_MATCH= -IPSET_MATCH=Yes +IPSET_MATCH= CONNMARK=Yes XCONNMARK=Yes CONNMARK_MATCH=Yes Cheers, b. ------------------------------------------------------------------------------ Join us December 9, 2009 for the Red Hat Virtual Experience, a free event focused on virtualization and cloud computing. Attend in-depth...

...ysdev-is-bridged Support (PHYSDEV_BRIDGE): Available Packet length Match (LENGTH_MATCH): Available IP range Match(IPRANGE_MATCH): Available Recent Match (RECENT_MATCH): Available Owner Match (OWNER_MATCH): Available Owner Name Match (OWNER_NAME_MATCH): Available Ipset Match (IPSET_MATCH): Available CONNMARK Target (CONNMARK): Available Extended CONNMARK Target (XCONNMARK): Available Connmark Match (CONNMARK_MATCH): Available Extended Connmark Match (XCONNMARK_MATCH): Available Raw Table (RAW_TABLE): Available Rawpost Table (RAWPOST_TABLE): Available IPP...

...+ qt /sbin/iptables -t nat -L -n + /sbin/iptables -t nat -L -n + NAT_ENABLED=Yes + qt /sbin/iptables -t mangle -L -n + /sbin/iptables -t mangle -L -n + MANGLE_ENABLED=Yes + CONNTRACK_MATCH= + MULTIPORT= + XMULTIPORT= + POLICY_MATCH= + PHYSDEV_MATCH= + IPRANGE_MATCH= + RECENT_MATCH= + OWNER_MATCH= + IPSET_MATCH= + ROUTE_TARGET= + XMARK= + CONNMARK= + CONNMARK_MATCH= + qt /sbin/iptables -N fooX1234 + /sbin/iptables -N fooX1234 + qt /sbin/iptables -A fooX1234 -m conntrack --ctorigdst 192.168.1.1 -j ACCEPT + /sbin/iptables -A fooX1234 -m conntrack --ctorigdst 192.168.1.1 -j ACCEPT + CONNTRACK_MATCH=Yes + qt...