Hi Gary,
On Sun, Nov 19, 2006 at 05:23:53PM -0800, Gary W. Smith told us:
> I have a need to create a dynamic table in that will have random IP's
> inserted and deleted on a regular basis. Currently we do this by
> creating a chain at load time and on a scheduled basis we flush that
> chain and then to a iptables-restore -n < dynamic_rules.txt.
>
> Is there a better approach to doing this?
what about using ipset??
http://www.netfilter.org/projects/ipset/index.html
hope that helps,
Sven
> Gary Wayne Smith
>
--
Linux zion.homelinux.com 2.6.18-1.2849.fc6xen #1 SMP Fri Nov 10 13:56:52 EST
2006 i686 athlon i386 GNU/Linux
07:54:34 up 4 days, 9:12, 1 user, load average: 0.07, 0.13, 0.13
pgpBhPmPe5vCt.pgp
Description: PGP signature
|