diff options
| author | Jozsef Kadlecsik | 2011-06-16 18:42:40 +0200 |
|---|---|---|
| committer | Patrick McHardy | 2011-06-16 18:42:40 +0200 |
| commit | ac8cc925d35fc5a05da2bd097e602f20de2478a4 (patch) | |
| tree | f91b62fd166ff18386c4c9b38c02e46d9bc06b90 /include/linux/netfilter/xt_set.h | |
| parent | netfilter: ipset: whitespace fixes: some space before tab slipped in (diff) | |
| download | kernel-qcow2-linux-ac8cc925d35fc5a05da2bd097e602f20de2478a4.tar.gz kernel-qcow2-linux-ac8cc925d35fc5a05da2bd097e602f20de2478a4.tar.xz kernel-qcow2-linux-ac8cc925d35fc5a05da2bd097e602f20de2478a4.zip | |
netfilter: ipset: options and flags support added to the kernel API
The support makes possible to specify the timeout value for
the SET target and a flag to reset the timeout for already existing
entries.
Signed-off-by: Jozsef Kadlecsik <kadlec@blackhole.kfki.hu>
Signed-off-by: Patrick McHardy <kaber@trash.net>
Diffstat (limited to 'include/linux/netfilter/xt_set.h')
| -rw-r--r-- | include/linux/netfilter/xt_set.h | 15 |
1 files changed, 12 insertions, 3 deletions
diff --git a/include/linux/netfilter/xt_set.h b/include/linux/netfilter/xt_set.h index 081f1ded2842..c0405ac92870 100644 --- a/include/linux/netfilter/xt_set.h +++ b/include/linux/netfilter/xt_set.h @@ -35,7 +35,7 @@ struct xt_set_info_target_v0 { struct xt_set_info_v0 del_set; }; -/* Revision 1: current interface to netfilter/iptables */ +/* Revision 1 match and target */ struct xt_set_info { ip_set_id_t index; @@ -44,13 +44,22 @@ struct xt_set_info { }; /* match and target infos */ -struct xt_set_info_match { +struct xt_set_info_match_v1 { struct xt_set_info match_set; }; -struct xt_set_info_target { +struct xt_set_info_target_v1 { struct xt_set_info add_set; struct xt_set_info del_set; }; +/* Revision 2 target */ + +struct xt_set_info_target_v2 { + struct xt_set_info add_set; + struct xt_set_info del_set; + u32 flags; + u32 timeout; +}; + #endif /*_XT_SET_H*/ |