![]() You can create different type HASH, depend what you need block: ![]() Installationĭepend your OS, you need install IPSET and IPTABLES packages. iptables has been the Linux firewall solution since the 2.4 kernel. Perhaps because iptables is the most visible part of the netfilter framework, the framework is commonly referred to collectively as iptables. It is actually a part of the larger netfilter framework. IPTABLES is the user-space tool for configuring firewall rules in the Linux kernel. Unlike normal iptables chains, which are stored and traversed linearly, IP sets are stored in indexed data structures, like addresses, networks, (TCP/UDP) port numbers, MAC addresses, interface names or combinations of them in a way, which making lookups very efficient, even when dealing with large sets. IPSET is an extension to iptables that allows you to create firewall rules that match entire “sets” of addresses at once.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |