> What is it possible if I want to make multiple destination address of
> these rule above to moved with a list file that created ?
> If yes, let me know how the rule of this issue ?

Try combining with ipset.

--
ubuntu-users mailing list
ubuntu-users@lists.ubuntu.com
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-users

On Mon, 2010-10-04 at 19:38 +0800, Christopher Chan wrote:
> > What is it possible if I want to make multiple destination address of
> > these rule above to moved with a list file that created ?
> > If yes, let me know how the rule of this issue ?
>
> Try combining with ipset.

I'd never heard of ipset. Thanks!

Regards, K.

--
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~~~~~~~~~~~~~~~~~~~
Karl Auer (kauer@biplane.com.au) +61-2-64957160 (h)
http://www.biplane.com.au/kauer/ +61-428-957160 (mob)

GPG fingerprint: B386 7819 B227 2961 8301 C5A9 2EBC 754B CD97 0156
Old fingerprint: 07F3 1DF9 9D45 8BCD 7DD5 00CE 4A44 6A03 F43A 7DEF
--
ubuntu-users mailing list
ubuntu-users@lists.ubuntu.com
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-users

Karl Auer wrote:
> On Mon, 2010-10-04 at 19:38 +0800, Christopher Chan wrote:
>>> What is it possible if I want to make multiple destination address of
>>> these rule above to moved with a list file that created ?
>>> If yes, let me know how the rule of this issue ?
>> Try combining with ipset.
>
> I'd never heard of ipset. Thanks!
>

No problem. I would not have heard of it either had it not been a need
to firewall thousands of ips and ip ranges in a previous job I had.
OpenBSD and pf rules!

--
ubuntu-users mailing list
ubuntu-users@lists.ubuntu.com
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-users

On 10/04/2010 06:32 AM, Christopher Chan wrote:
> Karl Auer wrote:
>> On Mon, 2010-10-04 at 19:38 +0800, Christopher Chan wrote:
>>>> What is it possible if I want to make multiple destination address of
>>>> these rule above to moved with a list file that created ?
>>>> If yes, let me know how the rule of this issue ?
>>> Try combining with ipset.
>>
>> I'd never heard of ipset. Thanks!
>>
>
> No problem. I would not have heard of it either had it not been a need
> to firewall thousands of ips and ip ranges in a previous job I had.
> OpenBSD and pf rules!
>

Might be worth a read:
https://launchpad.net/ubuntu/+source/ipset/+bugs
http://manpages.ubuntu.com/manpages/lucid/man8/ipset.8.html



--
ubuntu-users mailing list
ubuntu-users@lists.ubuntu.com
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-users

NoOp wrote:
> On 10/04/2010 06:32 AM, Christopher Chan wrote:
>> Karl Auer wrote:
>>> On Mon, 2010-10-04 at 19:38 +0800, Christopher Chan wrote:
>>>>> What is it possible if I want to make multiple destination address of
>>>>> these rule above to moved with a list file that created ?
>>>>> If yes, let me know how the rule of this issue ?
>>>> Try combining with ipset.
>>> I'd never heard of ipset. Thanks!
>>>
>> No problem. I would not have heard of it either had it not been a need
>> to firewall thousands of ips and ip ranges in a previous job I had.
>> OpenBSD and pf rules!
>>
>
> Might be worth a read:
> https://launchpad.net/ubuntu/+source/ipset/+bugs
> http://manpages.ubuntu.com/manpages/lucid/man8/ipset.8.html
>

Not read them links but it has been at least half a decade since ipset
came out...if it still has outstanding issues then I guess it has to be
OpenBSD if you need to make rules involving thousands of ip addresses
and ip ranges.

FreeBSD has had pf ported over from OpenBSD but I wonder how stable and
good its implementation is...

--
ubuntu-users mailing list
ubuntu-users@lists.ubuntu.com
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-users