]> git.ipfire.org Git - people/stevee/ipfire-2.x.git/commit
projects / people / stevee / ipfire-2.x.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 963f015) | patch
firewall-lib.pl: Use an ipset set if a service group contains more than
authorStefan Schantl <stefan.schantl@ipfire.org>
Sat, 22 Apr 2023 07:41:38 +0000 (09:41 +0200)
committerStefan Schantl <stefan.schantl@ipfire.org>
Sat, 22 Apr 2023 07:41:38 +0000 (09:41 +0200)
commit64b74db83819a38f14d94da0f4b0163dc66ea384
tree573f42a75f33e15c1b6f95d011499251658afe61tree
parent963f0159d77dbacd41e34139baae7db73de54a89commit | diff
firewall-lib.pl: Use an ipset set if a service group contains more than
15 ports.

The iptables multiport only supports up to 15 ports (ranges costs more).
To avoid this kind of limitation, now an ipset set will be used which
could handle up to 65k ports at once.

Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
config/firewall/firewall-lib.pl diff | blob | blame | history
Stefan's tree of IPFire 2.x.