]> git.ipfire.org Git - people/stevee/ipfire-2.x.git/commit
projects / people / stevee / ipfire-2.x.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 6aafefa) | patch
firewall-lib.pl: Use an ipset set if a service group contains more than
authorStefan Schantl <stefan.schantl@ipfire.org>
Sat, 22 Apr 2023 07:41:38 +0000 (09:41 +0200)
committerStefan Schantl <stefan.schantl@ipfire.org>
Sun, 3 Mar 2024 11:56:03 +0000 (12:56 +0100)
commita66dde8dce3105d3cc98594942a12bfda4d3aac0
tree6277f191154975b91f434df7d486285e2477e2e2tree
parent6aafefaca215d33d65f6d16282129d72812fdddacommit | diff
firewall-lib.pl: Use an ipset set if a service group contains more than
15 ports.

The iptables multiport only supports up to 15 ports (ranges costs more).
To avoid this kind of limitation, now an ipset set will be used which
could handle up to 65k ports at once.

Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
config/firewall/firewall-lib.pl diff | blob | blame | history
Stefan's tree of IPFire 2.x.